[....] Starting OpenBSD Secure Shell server: sshd[ 19.774781] random: sshd: uninitialized urandom read (32 bytes read) [?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 24.125456] random: sshd: uninitialized urandom read (32 bytes read) [ 24.758997] sshd (4473) used greatest stack depth: 16456 bytes left [ 24.780170] random: sshd: uninitialized urandom read (32 bytes read) [ 25.523171] random: sshd: uninitialized urandom read (32 bytes read) [ 25.683814] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.0.10' (ECDSA) to the list of known hosts. [ 31.161975] random: sshd: uninitialized urandom read (32 bytes read) [ 31.267335] IPVS: ftp: loaded support on port[0] = 21 [ 31.279784] IPVS: ftp: loaded support on port[0] = 21 [ 31.284046] IPVS: ftp: loaded support on port[0] = 21 [ 31.286510] IPVS: ftp: loaded support on port[0] = 21 [ 31.292582] IPVS: ftp: loaded support on port[0] = 21 [ 31.304973] IPVS: ftp: loaded support on port[0] = 21 [ 31.311356] IPVS: ftp: loaded support on port[0] = 21 [ 31.317317] IPVS: ftp: loaded support on port[0] = 21 [ 31.448704] FAULT_INJECTION: forcing a failure. [ 31.448704] name failslab, interval 1, probability 0, space 0, times 1 [ 31.457590] FAULT_INJECTION: forcing a failure. [ 31.457590] name failslab, interval 1, probability 0, space 0, times 1 [ 31.460107] CPU: 1 PID: 4507 Comm: syz-executor216 Not tainted 4.17.0-rc3+ #35 [ 31.478794] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 31.488129] Call Trace: [ 31.490705] dump_stack+0x1b9/0x294 [ 31.494324] ? dump_stack_print_info.cold.2+0x52/0x52 [ 31.499496] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 31.504507] should_fail.cold.4+0xa/0x1a [ 31.508560] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 31.513661] ? save_stack+0x43/0xd0 [ 31.517287] ? kasan_kmalloc+0xc4/0xe0 [ 31.521155] ? kasan_slab_alloc+0x12/0x20 [ 31.525287] ? kmem_cache_alloc+0x12e/0x760 [ 31.529620] ? fuse_alloc_inode+0x96/0x4f0 [ 31.533943] ? alloc_inode+0x63/0x190 [ 31.537748] ? iget5_locked+0x20e/0x570 [ 31.541718] ? graph_lock+0x170/0x170 [ 31.545513] ? print_usage_bug+0xc0/0xc0 [ 31.549565] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 31.554322] ? do_mount+0x564/0x3070 [ 31.558033] ? ksys_mount+0x12d/0x140 [ 31.561817] ? __x64_sys_mount+0xbe/0x150 [ 31.565949] ? find_held_lock+0x36/0x1c0 [ 31.570090] ? __lock_is_held+0xb5/0x140 [ 31.574166] ? check_same_owner+0x320/0x320 [ 31.578496] ? __mutex_init+0x1ef/0x280 [ 31.582457] ? rcu_note_context_switch+0x710/0x710 [ 31.587364] ? __ia32_sys_membarrier+0x150/0x150 [ 31.592101] __should_failslab+0x124/0x180 [ 31.596318] should_failslab+0x9/0x14 [ 31.600101] kmem_cache_alloc_trace+0x2cb/0x780 [ 31.604758] ? init_wait_entry+0x1b0/0x1b0 [ 31.608987] ? find_held_lock+0x36/0x1c0 [ 31.613125] fuse_alloc_inode+0x3ae/0x4f0 [ 31.617262] ? fuse_dev_alloc+0x4e0/0x4e0 [ 31.621390] ? lock_downgrade+0x8e0/0x8e0 [ 31.625521] ? kasan_check_read+0x11/0x20 [ 31.629646] ? do_raw_spin_unlock+0x9e/0x2e0 [ 31.634032] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 31.638598] ? kasan_check_write+0x14/0x20 [ 31.642813] ? find_inode.isra.19+0xc3/0x1d0 [ 31.647200] ? fuse_dev_alloc+0x4e0/0x4e0 [ 31.651325] alloc_inode+0x63/0x190 [ 31.654940] iget5_locked+0x20e/0x570 [ 31.658719] ? fuse_inode_eq+0x80/0x80 [ 31.662589] ? fuse_init_file_inode+0x70/0x70 [ 31.667072] ? inode_lru_isolate+0x580/0x580 [ 31.671459] ? cgwb_kill+0x630/0x630 [ 31.675161] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 31.680856] ? print_usage_bug+0xc0/0xc0 [ 31.684899] fuse_iget+0x1cc/0x820 [ 31.688429] ? fuse_change_attributes+0x810/0x810 [ 31.693271] ? _raw_spin_unlock+0x22/0x30 [ 31.697408] fuse_get_root_inode+0x121/0x190 [ 31.701795] ? fuse_iget+0x820/0x820 [ 31.705493] ? _raw_spin_unlock_bh+0x30/0x40 [ 31.709880] ? bdi_set_max_ratio+0x112/0x150 [ 31.714282] fuse_fill_super+0x11e0/0x1e20 [ 31.718502] ? fuse_get_root_inode+0x190/0x190 [ 31.723067] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 31.728067] ? kasan_check_read+0x11/0x20 [ 31.732199] ? cap_capable+0x1f9/0x260 [ 31.736070] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 31.741589] ? security_capable+0x99/0xc0 [ 31.745719] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 31.751242] ? ns_capable_common+0x13f/0x170 [ 31.755631] ? get_anon_bdev+0x2f0/0x2f0 [ 31.759672] ? sget+0x113/0x150 [ 31.762937] ? fuse_get_root_inode+0x190/0x190 [ 31.767498] mount_nodev+0x6b/0x110 [ 31.771113] fuse_mount+0x2c/0x40 [ 31.774545] mount_fs+0xae/0x328 [ 31.777896] vfs_kern_mount.part.34+0xd4/0x4d0 [ 31.782456] ? may_umount+0xb0/0xb0 [ 31.786064] ? _raw_read_unlock+0x22/0x30 [ 31.790302] ? __get_fs_type+0x97/0xc0 [ 31.794173] do_mount+0x564/0x3070 [ 31.797711] ? do_raw_spin_unlock+0x9e/0x2e0 [ 31.802117] ? copy_mount_string+0x40/0x40 [ 31.806424] ? rcu_pm_notify+0xc0/0xc0 [ 31.810293] ? copy_mount_options+0x5f/0x380 [ 31.814679] ? rcu_read_lock_sched_held+0x108/0x120 [ 31.819679] ? kmem_cache_alloc_trace+0x616/0x780 [ 31.824505] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 31.830034] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 31.835565] ? copy_mount_options+0x285/0x380 [ 31.840045] ksys_mount+0x12d/0x140 [ 31.843665] __x64_sys_mount+0xbe/0x150 [ 31.847631] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 31.852636] do_syscall_64+0x1b1/0x800 [ 31.856506] ? syscall_return_slowpath+0x5c0/0x5c0 [ 31.861418] ? syscall_return_slowpath+0x30f/0x5c0 [ 31.866333] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 31.871684] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 31.876527] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 31.881706] RIP: 0033:0x442689 [ 31.884877] RSP: 002b:00007fff62b2dc48 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 31.892740] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000442689 [ 31.899991] RDX: 00000000004a451e RSI: 0000000020000180 RDI: 00000000004ba505 [ 31.907257] RBP: 00007fff62b2e500 R08: 00007fff62b2e500 R09: 0000000000000000 [ 31.914531] R10: 0000000000000000 R11: 0000000000000206 R12: ffffffffffffffff [ 31.921811] R13: 0000000000000003 R14: 0000000000000000 R15: 00007fff62b2dd98 [ 31.929256] CPU: 0 PID: 4508 Comm: syz-executor216 Not tainted 4.17.0-rc3+ #35 [ 31.936626] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 31.943157] FAULT_INJECTION: forcing a failure. [ 31.943157] name failslab, interval 1, probability 0, space 0, times 0 [ 31.945960] Call Trace: [ 31.945978] dump_stack+0x1b9/0x294 [ 31.945988] ? dump_stack_print_info.cold.2+0x52/0x52 [ 31.945998] ? __lock_acquire+0x7f5/0x5140 [ 31.946006] ? __lock_acquire+0x7f5/0x5140 [ 31.946017] should_fail.cold.4+0xa/0x1a [ 31.946027] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 31.946036] ? debug_check_no_locks_freed+0x310/0x310 [ 31.946054] ? kasan_check_write+0x14/0x20 [ 31.996334] ? __init_rwsem+0x1c4/0x290 [ 32.000288] ? graph_lock+0x170/0x170 [ 32.004078] ? find_held_lock+0x36/0x1c0 [ 32.008210] ? find_held_lock+0x36/0x1c0 [ 32.012262] ? __lock_is_held+0xb5/0x140 [ 32.016327] ? check_same_owner+0x320/0x320 [ 32.020628] ? graph_lock+0x170/0x170 [ 32.024411] ? rcu_note_context_switch+0x710/0x710 [ 32.029322] __should_failslab+0x124/0x180 [ 32.033535] should_failslab+0x9/0x14 [ 32.037313] kmem_cache_alloc+0x2af/0x760 [ 32.041442] ? find_held_lock+0x36/0x1c0 [ 32.045486] fuse_alloc_inode+0x96/0x4f0 [ 32.049527] ? fuse_dev_alloc+0x4e0/0x4e0 [ 32.053656] ? lock_downgrade+0x8e0/0x8e0 [ 32.057787] ? kasan_check_read+0x11/0x20 [ 32.061918] ? do_raw_spin_unlock+0x9e/0x2e0 [ 32.066304] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 32.070866] ? kasan_check_write+0x14/0x20 [ 32.075080] ? find_inode.isra.19+0xc3/0x1d0 [ 32.079499] ? fuse_dev_alloc+0x4e0/0x4e0 [ 32.083629] alloc_inode+0x63/0x190 [ 32.087237] iget5_locked+0x20e/0x570 [ 32.091018] ? fuse_inode_eq+0x80/0x80 [ 32.094893] ? fuse_init_file_inode+0x70/0x70 [ 32.099375] ? inode_lru_isolate+0x580/0x580 [ 32.103763] ? cgwb_kill+0x630/0x630 [ 32.107460] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 32.112978] ? print_usage_bug+0xc0/0xc0 [ 32.117017] fuse_iget+0x1cc/0x820 [ 32.120537] ? fuse_change_attributes+0x810/0x810 [ 32.125360] ? _raw_spin_unlock+0x22/0x30 [ 32.129499] fuse_get_root_inode+0x121/0x190 [ 32.133889] ? fuse_iget+0x820/0x820 [ 32.137673] ? _raw_spin_unlock_bh+0x30/0x40 [ 32.142061] ? bdi_set_max_ratio+0x112/0x150 [ 32.146449] fuse_fill_super+0x11e0/0x1e20 [ 32.150674] ? fuse_get_root_inode+0x190/0x190 [ 32.155240] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 32.160252] ? kasan_check_read+0x11/0x20 [ 32.164400] ? cap_capable+0x1f9/0x260 [ 32.168280] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 32.173807] ? security_capable+0x99/0xc0 [ 32.177946] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 32.183483] ? ns_capable_common+0x13f/0x170 [ 32.187881] ? get_anon_bdev+0x2f0/0x2f0 [ 32.191935] ? sget+0x113/0x150 [ 32.195203] ? fuse_get_root_inode+0x190/0x190 [ 32.199772] mount_nodev+0x6b/0x110 [ 32.203381] fuse_mount+0x2c/0x40 [ 32.206816] mount_fs+0xae/0x328 [ 32.210166] vfs_kern_mount.part.34+0xd4/0x4d0 [ 32.214726] ? may_umount+0xb0/0xb0 [ 32.218430] ? _raw_read_unlock+0x22/0x30 [ 32.222556] ? __get_fs_type+0x97/0xc0 [ 32.226433] do_mount+0x564/0x3070 [ 32.229952] ? do_raw_spin_unlock+0x9e/0x2e0 [ 32.234343] ? copy_mount_string+0x40/0x40 [ 32.238587] ? rcu_pm_notify+0xc0/0xc0 [ 32.242457] ? copy_mount_options+0x5f/0x380 [ 32.246844] ? rcu_read_lock_sched_held+0x108/0x120 [ 32.251842] ? kmem_cache_alloc_trace+0x616/0x780 [ 32.256665] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 32.262199] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 32.267714] ? copy_mount_options+0x285/0x380 [ 32.272194] ksys_mount+0x12d/0x140 [ 32.275806] __x64_sys_mount+0xbe/0x150 [ 32.279769] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 32.284767] do_syscall_64+0x1b1/0x800 [ 32.288637] ? syscall_return_slowpath+0x5c0/0x5c0 [ 32.293546] ? syscall_return_slowpath+0x30f/0x5c0 [ 32.298458] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 32.303805] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 32.308635] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 32.313805] RIP: 0033:0x442689 [ 32.316972] RSP: 002b:00007fff62b2dc48 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 32.324669] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000442689 [ 32.331925] RDX: 00000000004a451e RSI: 0000000020000180 RDI: 00000000004ba505 [ 32.339172] RBP: 00007fff62b2e500 R08: 00007fff62b2e500 R09: 0000000000000000 [ 32.346421] R10: 0000000000000000 R11: 0000000000000206 R12: ffffffffffffffff [ 32.353669] R13: 0000000000000003 R14: 0000000000000000 R15: 00007fff62b2dd98 [ 32.360939] CPU: 1 PID: 4509 Comm: syz-executor216 Not tainted 4.17.0-rc3+ #35 [ 32.365318] FAULT_INJECTION: forcing a failure. [ 32.365318] name failslab, interval 1, probability 0, space 0, times 0 [ 32.368304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 32.368308] Call Trace: [ 32.368323] dump_stack+0x1b9/0x294 [ 32.368334] ? dump_stack_print_info.cold.2+0x52/0x52 [ 32.368355] should_fail.cold.4+0xa/0x1a [ 32.404243] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 32.409339] ? lock_downgrade+0x8e0/0x8e0 [ 32.413470] ? find_held_lock+0x36/0x1c0 [ 32.417515] ? graph_lock+0x170/0x170 [ 32.421298] ? lock_acquire+0x1dc/0x520 [ 32.425253] ? lock_downgrade+0x8e0/0x8e0 [ 32.429381] ? percpu_ref_tryget_live+0x14e/0x300 [ 32.434203] ? find_held_lock+0x36/0x1c0 [ 32.438247] ? lock_downgrade+0x8e0/0x8e0 [ 32.442376] __should_failslab+0x124/0x180 [ 32.446589] should_failslab+0x9/0x14 [ 32.450371] kmem_cache_alloc_trace+0x4b/0x780 [ 32.454942] memcg_kmem_get_cache+0x474/0x870 [ 32.459416] ? mem_cgroup_handle_over_high+0x130/0x130 [ 32.464679] ? check_same_owner+0x320/0x320 [ 32.468977] ? graph_lock+0x170/0x170 [ 32.472761] ? rcu_note_context_switch+0x710/0x710 [ 32.477682] ? __should_failslab+0x12b/0x180 [ 32.482072] kmem_cache_alloc+0x18a/0x760 [ 32.486198] ? find_held_lock+0x36/0x1c0 [ 32.490242] fuse_alloc_inode+0x96/0x4f0 [ 32.494287] ? fuse_dev_alloc+0x4e0/0x4e0 [ 32.498411] ? lock_downgrade+0x8e0/0x8e0 [ 32.502544] ? kasan_check_read+0x11/0x20 [ 32.506673] ? do_raw_spin_unlock+0x9e/0x2e0 [ 32.511058] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 32.515620] ? kasan_check_write+0x14/0x20 [ 32.519834] ? find_inode.isra.19+0xc3/0x1d0 [ 32.524224] ? fuse_dev_alloc+0x4e0/0x4e0 [ 32.528363] alloc_inode+0x63/0x190 [ 32.531973] iget5_locked+0x20e/0x570 [ 32.535752] ? fuse_inode_eq+0x80/0x80 [ 32.539618] ? fuse_init_file_inode+0x70/0x70 [ 32.544091] ? inode_lru_isolate+0x580/0x580 [ 32.548478] ? cgwb_kill+0x630/0x630 [ 32.552176] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 32.557692] ? print_usage_bug+0xc0/0xc0 [ 32.561734] fuse_iget+0x1cc/0x820 [ 32.565256] ? fuse_change_attributes+0x810/0x810 [ 32.570077] ? _raw_spin_unlock+0x22/0x30 [ 32.574205] fuse_get_root_inode+0x121/0x190 [ 32.578590] ? fuse_iget+0x820/0x820 [ 32.582287] ? _raw_spin_unlock_bh+0x30/0x40 [ 32.586677] ? bdi_set_max_ratio+0x112/0x150 [ 32.591072] fuse_fill_super+0x11e0/0x1e20 [ 32.595290] ? fuse_get_root_inode+0x190/0x190 [ 32.599853] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 32.604851] ? kasan_check_read+0x11/0x20 [ 32.608981] ? cap_capable+0x1f9/0x260 [ 32.612861] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 32.618387] ? security_capable+0x99/0xc0 [ 32.622514] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 32.628031] ? ns_capable_common+0x13f/0x170 [ 32.632420] ? get_anon_bdev+0x2f0/0x2f0 [ 32.636462] ? sget+0x113/0x150 [ 32.639722] ? fuse_get_root_inode+0x190/0x190 [ 32.644281] mount_nodev+0x6b/0x110 [ 32.647888] fuse_mount+0x2c/0x40 [ 32.651322] mount_fs+0xae/0x328 [ 32.654672] vfs_kern_mount.part.34+0xd4/0x4d0 [ 32.659231] ? may_umount+0xb0/0xb0 [ 32.662844] ? _raw_read_unlock+0x22/0x30 [ 32.666970] ? __get_fs_type+0x97/0xc0 [ 32.670840] do_mount+0x564/0x3070 [ 32.674363] ? do_raw_spin_unlock+0x9e/0x2e0 [ 32.678762] ? copy_mount_string+0x40/0x40 [ 32.682976] ? rcu_pm_notify+0xc0/0xc0 [ 32.687368] ? copy_mount_options+0x5f/0x380 [ 32.691754] ? rcu_read_lock_sched_held+0x108/0x120 [ 32.696751] ? kmem_cache_alloc_trace+0x616/0x780 [ 32.701575] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 32.707102] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 32.712620] ? copy_mount_options+0x285/0x380 [ 32.717095] ksys_mount+0x12d/0x140 [ 32.720709] __x64_sys_mount+0xbe/0x150 [ 32.724663] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 32.729661] do_syscall_64+0x1b1/0x800 [ 32.733530] ? syscall_return_slowpath+0x5c0/0x5c0 [ 32.738438] ? syscall_return_slowpath+0x30f/0x5c0 [ 32.743356] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 32.748703] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 32.753536] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 32.758704] RIP: 0033:0x442689 [ 32.761871] RSP: 002b:00007fff62b2dc48 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 32.769558] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000442689 [ 32.776815] RDX: 00000000004a451e RSI: 0000000020000180 RDI: 00000000004ba505 [ 32.784239] RBP: 00007fff62b2e500 R08: 00007fff62b2e500 R09: 0000000000000000 [ 32.791489] R10: 0000000000000000 R11: 0000000000000206 R12: ffffffffffffffff [ 32.798737] R13: 0000000000000003 R14: 0000000000000000 R15: 00007fff62b2dd98 [ 32.806003] CPU: 0 PID: 4510 Comm: syz-executor216 Not tainted 4.17.0-rc3+ #35 [ 32.813370] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 32.822708] Call Trace: [ 32.825285] dump_stack+0x1b9/0x294 [ 32.828894] ? dump_stack_print_info.cold.2+0x52/0x52 [ 32.834065] ? __lock_acquire+0x7f5/0x5140 [ 32.836624] FAULT_INJECTION: forcing a failure. [ 32.836624] name failslab, interval 1, probability 0, space 0, times 0 [ 32.839069] ? __lock_acquire+0x7f5/0x5140 [ 32.839082] should_fail.cold.4+0xa/0x1a [ 32.839095] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 32.839104] ? debug_check_no_locks_freed+0x310/0x310 [ 32.839114] ? kasan_check_write+0x14/0x20 [ 32.839122] ? __init_rwsem+0x1c4/0x290 [ 32.839136] ? graph_lock+0x170/0x170 [ 32.881511] ? find_held_lock+0x36/0x1c0 [ 32.885556] ? find_held_lock+0x36/0x1c0 [ 32.889600] ? __lock_is_held+0xb5/0x140 [ 32.893647] ? check_same_owner+0x320/0x320 [ 32.897948] ? graph_lock+0x170/0x170 [ 32.901746] ? rcu_note_context_switch+0x710/0x710 [ 32.906666] __should_failslab+0x124/0x180 [ 32.910893] should_failslab+0x9/0x14 [ 32.914675] kmem_cache_alloc+0x2af/0x760 [ 32.918800] ? find_held_lock+0x36/0x1c0 [ 32.922864] fuse_alloc_inode+0x96/0x4f0 [ 32.926906] ? fuse_dev_alloc+0x4e0/0x4e0 [ 32.931040] ? lock_downgrade+0x8e0/0x8e0 [ 32.935176] ? kasan_check_read+0x11/0x20 [ 32.939304] ? do_raw_spin_unlock+0x9e/0x2e0 [ 32.943703] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 32.948277] ? kasan_check_write+0x14/0x20 [ 32.952489] ? find_inode.isra.19+0xc3/0x1d0 [ 32.956877] ? fuse_dev_alloc+0x4e0/0x4e0 [ 32.961005] alloc_inode+0x63/0x190 [ 32.964611] iget5_locked+0x20e/0x570 [ 32.968392] ? fuse_inode_eq+0x80/0x80 [ 32.972255] ? fuse_init_file_inode+0x70/0x70 [ 32.976730] ? inode_lru_isolate+0x580/0x580 [ 32.981115] ? cgwb_kill+0x630/0x630 [ 32.984809] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 32.990325] ? print_usage_bug+0xc0/0xc0 [ 32.994367] fuse_iget+0x1cc/0x820 [ 32.997899] ? fuse_change_attributes+0x810/0x810 [ 33.002720] ? _raw_spin_unlock+0x22/0x30 [ 33.006852] fuse_get_root_inode+0x121/0x190 [ 33.011238] ? fuse_iget+0x820/0x820 [ 33.014938] ? _raw_spin_unlock_bh+0x30/0x40 [ 33.019326] ? bdi_set_max_ratio+0x112/0x150 [ 33.023714] fuse_fill_super+0x11e0/0x1e20 [ 33.027929] ? fuse_get_root_inode+0x190/0x190 [ 33.032499] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 33.037495] ? kasan_check_read+0x11/0x20 [ 33.041710] ? cap_capable+0x1f9/0x260 [ 33.045587] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 33.051104] ? security_capable+0x99/0xc0 [ 33.055233] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 33.060749] ? ns_capable_common+0x13f/0x170 [ 33.065137] ? get_anon_bdev+0x2f0/0x2f0 [ 33.069177] ? sget+0x113/0x150 [ 33.072442] ? fuse_get_root_inode+0x190/0x190 [ 33.077004] mount_nodev+0x6b/0x110 [ 33.080614] fuse_mount+0x2c/0x40 [ 33.084047] mount_fs+0xae/0x328 [ 33.087402] vfs_kern_mount.part.34+0xd4/0x4d0 [ 33.091966] ? may_umount+0xb0/0xb0 [ 33.095574] ? _raw_read_unlock+0x22/0x30 [ 33.099703] ? __get_fs_type+0x97/0xc0 [ 33.103573] do_mount+0x564/0x3070 [ 33.107094] ? do_raw_spin_unlock+0x9e/0x2e0 [ 33.111483] ? copy_mount_string+0x40/0x40 [ 33.115698] ? rcu_pm_notify+0xc0/0xc0 [ 33.119566] ? copy_mount_options+0x5f/0x380 [ 33.123953] ? rcu_read_lock_sched_held+0x108/0x120 [ 33.128951] ? kmem_cache_alloc_trace+0x616/0x780 [ 33.133774] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 33.139305] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 33.144825] ? copy_mount_options+0x285/0x380 [ 33.149302] ksys_mount+0x12d/0x140 [ 33.152908] __x64_sys_mount+0xbe/0x150 [ 33.156867] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 33.161865] do_syscall_64+0x1b1/0x800 [ 33.165734] ? syscall_return_slowpath+0x5c0/0x5c0 [ 33.170642] ? syscall_return_slowpath+0x30f/0x5c0 [ 33.175553] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 33.180900] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 33.185724] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 33.191150] RIP: 0033:0x442689 [ 33.194316] RSP: 002b:00007fff62b2dc48 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 33.202096] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000442689 [ 33.209357] RDX: 00000000004a451e RSI: 0000000020000180 RDI: 00000000004ba505 [ 33.216626] RBP: 00007fff62b2e500 R08: 00007fff62b2e500 R09: 0000000000000000 [ 33.223892] R10: 0000000000000000 R11: 0000000000000206 R12: ffffffffffffffff [ 33.231150] R13: 0000000000000003 R14: 0000000000000000 R15: 00007fff62b2dd98 [ 33.238431] CPU: 1 PID: 4513 Comm: syz-executor216 Not tainted 4.17.0-rc3+ #35 [ 33.245799] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 33.247442] FAULT_INJECTION: forcing a failure. [ 33.247442] name failslab, interval 1, probability 0, space 0, times 0 [ 33.255149] Call Trace: [ 33.255171] dump_stack+0x1b9/0x294 [ 33.255189] ? dump_stack_print_info.cold.2+0x52/0x52 [ 33.255213] should_fail.cold.4+0xa/0x1a [ 33.281739] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 33.286841] ? lock_downgrade+0x8e0/0x8e0 [ 33.290984] ? find_held_lock+0x36/0x1c0 [ 33.295036] ? graph_lock+0x170/0x170 [ 33.298831] ? lock_acquire+0x1dc/0x520 [ 33.302797] ? lock_downgrade+0x8e0/0x8e0 [ 33.306939] ? percpu_ref_tryget_live+0x14e/0x300 [ 33.311775] ? find_held_lock+0x36/0x1c0 [ 33.315835] ? lock_downgrade+0x8e0/0x8e0 [ 33.319980] __should_failslab+0x124/0x180 [ 33.324209] should_failslab+0x9/0x14 [ 33.328001] kmem_cache_alloc_trace+0x4b/0x780 [ 33.332587] memcg_kmem_get_cache+0x474/0x870 [ 33.337076] ? mem_cgroup_handle_over_high+0x130/0x130 [ 33.342354] ? check_same_owner+0x320/0x320 [ 33.346669] ? graph_lock+0x170/0x170 [ 33.350463] ? rcu_note_context_switch+0x710/0x710 [ 33.355387] ? __should_failslab+0x12b/0x180 [ 33.359790] kmem_cache_alloc+0x18a/0x760 [ 33.363927] ? find_held_lock+0x36/0x1c0 [ 33.367988] fuse_alloc_inode+0x96/0x4f0 [ 33.372305] ? fuse_dev_alloc+0x4e0/0x4e0 [ 33.376439] ? lock_downgrade+0x8e0/0x8e0 [ 33.380585] ? kasan_check_read+0x11/0x20 [ 33.384722] ? do_raw_spin_unlock+0x9e/0x2e0 [ 33.389123] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 33.393700] ? kasan_check_write+0x14/0x20 [ 33.397929] ? find_inode.isra.19+0xc3/0x1d0 [ 33.402331] ? fuse_dev_alloc+0x4e0/0x4e0 [ 33.406474] alloc_inode+0x63/0x190 [ 33.410094] iget5_locked+0x20e/0x570 [ 33.413882] ? fuse_inode_eq+0x80/0x80 [ 33.417764] ? fuse_init_file_inode+0x70/0x70 [ 33.422252] ? inode_lru_isolate+0x580/0x580 [ 33.426650] ? cgwb_kill+0x630/0x630 [ 33.430357] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 33.435885] ? print_usage_bug+0xc0/0xc0 [ 33.439939] fuse_iget+0x1cc/0x820 [ 33.443475] ? fuse_change_attributes+0x810/0x810 [ 33.448310] ? _raw_spin_unlock+0x22/0x30 [ 33.452456] fuse_get_root_inode+0x121/0x190 [ 33.456855] ? fuse_iget+0x820/0x820 [ 33.460567] ? _raw_spin_unlock_bh+0x30/0x40 [ 33.464966] ? bdi_set_max_ratio+0x112/0x150 [ 33.469366] fuse_fill_super+0x11e0/0x1e20 [ 33.473601] ? fuse_get_root_inode+0x190/0x190 [ 33.478177] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 33.483188] ? kasan_check_read+0x11/0x20 [ 33.487331] ? cap_capable+0x1f9/0x260 [ 33.491213] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 33.496740] ? security_capable+0x99/0xc0 [ 33.500890] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 33.506417] ? ns_capable_common+0x13f/0x170 [ 33.510821] ? get_anon_bdev+0x2f0/0x2f0 [ 33.514876] ? sget+0x113/0x150 [ 33.518149] ? fuse_get_root_inode+0x190/0x190 [ 33.522721] mount_nodev+0x6b/0x110 [ 33.526345] fuse_mount+0x2c/0x40 [ 33.529795] mount_fs+0xae/0x328 [ 33.533156] vfs_kern_mount.part.34+0xd4/0x4d0 [ 33.537756] ? may_umount+0xb0/0xb0 [ 33.541372] ? _raw_read_unlock+0x22/0x30 [ 33.545512] ? __get_fs_type+0x97/0xc0 [ 33.549393] do_mount+0x564/0x3070 [ 33.552931] ? copy_mount_string+0x40/0x40 [ 33.557158] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 33.561908] ? retint_kernel+0x10/0x10 [ 33.565790] ? copy_mount_options+0x213/0x380 [ 33.570282] ? __sanitizer_cov_trace_const_cmp4+0x11/0x20 [ 33.575810] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 33.581338] ? copy_mount_options+0x285/0x380 [ 33.585828] ksys_mount+0x12d/0x140 [ 33.589450] __x64_sys_mount+0xbe/0x150 [ 33.593416] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 33.598426] do_syscall_64+0x1b1/0x800 [ 33.602308] ? syscall_return_slowpath+0x5c0/0x5c0 [ 33.607229] ? syscall_return_slowpath+0x30f/0x5c0 [ 33.612153] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 33.617511] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 33.622347] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 33.627524] RIP: 0033:0x442689 [ 33.630704] RSP: 002b:00007fff62b2dc48 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 33.638409] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000442689 [ 33.645667] RDX: 00000000004a451e RSI: 0000000020000180 RDI: 00000000004ba505 [ 33.652934] RBP: 00007fff62b2e500 R08: 00007fff62b2e500 R09: 0000000000000000 [ 33.660192] R10: 0000000000000000 R11: 0000000000000206 R12: ffffffffffffffff [ 33.667462] R13: 0000000000000003 R14: 0000000000000000 R15: 00007fff62b2dd98 [ 33.674738] CPU: 0 PID: 4511 Comm: syz-executor216 Not tainted 4.17.0-rc3+ #35 [ 33.682105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 33.691455] Call Trace: [ 33.694051] dump_stack+0x1b9/0x294 [ 33.697691] ? dump_stack_print_info.cold.2+0x52/0x52 [ 33.702821] FAULT_INJECTION: forcing a failure. [ 33.702821] name failslab, interval 1, probability 0, space 0, times 0 [ 33.702884] ? __save_stack_trace+0x7e/0xd0 [ 33.718617] should_fail.cold.4+0xa/0x1a [ 33.722677] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 33.727773] ? save_stack+0x43/0xd0 [ 33.731488] ? kasan_kmalloc+0xc4/0xe0 [ 33.735369] ? kasan_slab_alloc+0x12/0x20 [ 33.739507] ? kmem_cache_alloc+0x12e/0x760 [ 33.743818] ? fuse_alloc_inode+0x96/0x4f0 [ 33.748043] ? alloc_inode+0x63/0x190 [ 33.751836] ? iget5_locked+0x20e/0x570 [ 33.755804] ? graph_lock+0x170/0x170 [ 33.759593] ? print_usage_bug+0xc0/0xc0 [ 33.763645] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 33.768389] ? do_mount+0x564/0x3070 [ 33.772092] ? ksys_mount+0x12d/0x140 [ 33.775882] ? __x64_sys_mount+0xbe/0x150 [ 33.780023] ? find_held_lock+0x36/0x1c0 [ 33.784082] ? __lock_is_held+0xb5/0x140 [ 33.788149] ? check_same_owner+0x320/0x320 [ 33.792461] ? __mutex_init+0x1ef/0x280 [ 33.796427] ? rcu_note_context_switch+0x710/0x710 [ 33.801345] ? __ia32_sys_membarrier+0x150/0x150 [ 33.806096] __should_failslab+0x124/0x180 [ 33.810329] should_failslab+0x9/0x14 [ 33.814123] kmem_cache_alloc_trace+0x2cb/0x780 [ 33.818782] ? init_wait_entry+0x1b0/0x1b0 [ 33.823010] ? find_held_lock+0x36/0x1c0 [ 33.827074] fuse_alloc_inode+0x3ae/0x4f0 [ 33.831221] ? fuse_dev_alloc+0x4e0/0x4e0 [ 33.835362] ? lock_downgrade+0x8e0/0x8e0 [ 33.839506] ? kasan_check_read+0x11/0x20 [ 33.843645] ? do_raw_spin_unlock+0x9e/0x2e0 [ 33.848046] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 33.852623] ? kasan_check_write+0x14/0x20 [ 33.856847] ? find_inode.isra.19+0xc3/0x1d0 [ 33.861249] ? fuse_dev_alloc+0x4e0/0x4e0 [ 33.865390] alloc_inode+0x63/0x190 [ 33.869010] iget5_locked+0x20e/0x570 [ 33.872803] ? fuse_inode_eq+0x80/0x80 [ 33.876682] ? fuse_init_file_inode+0x70/0x70 [ 33.881177] ? inode_lru_isolate+0x580/0x580 [ 33.885579] ? cgwb_kill+0x630/0x630 [ 33.889291] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 33.895429] ? print_usage_bug+0xc0/0xc0 [ 33.899484] fuse_iget+0x1cc/0x820 [ 33.903024] ? fuse_change_attributes+0x810/0x810 [ 33.907865] ? _raw_spin_unlock+0x22/0x30 [ 33.912009] fuse_get_root_inode+0x121/0x190 [ 33.917250] ? fuse_iget+0x820/0x820 [ 33.920968] ? _raw_spin_unlock_bh+0x30/0x40 [ 33.925367] ? bdi_set_max_ratio+0x112/0x150 [ 33.930288] fuse_fill_super+0x11e0/0x1e20 [ 33.934520] ? fuse_get_root_inode+0x190/0x190 [ 33.939095] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 33.944110] ? kasan_check_read+0x11/0x20 [ 33.948254] ? cap_capable+0x1f9/0x260 [ 33.952232] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 33.957757] ? security_capable+0x99/0xc0 [ 33.961898] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 33.967423] ? ns_capable_common+0x13f/0x170 [ 33.971825] ? get_anon_bdev+0x2f0/0x2f0 [ 33.975878] ? sget+0x113/0x150 [ 33.979153] ? fuse_get_root_inode+0x190/0x190 [ 33.983726] mount_nodev+0x6b/0x110 [ 33.987347] fuse_mount+0x2c/0x40 [ 33.990794] mount_fs+0xae/0x328 [ 33.994155] vfs_kern_mount.part.34+0xd4/0x4d0 [ 33.998729] ? may_umount+0xb0/0xb0 [ 34.002349] ? _raw_read_unlock+0x22/0x30 [ 34.006486] ? __get_fs_type+0x97/0xc0 [ 34.010369] do_mount+0x564/0x3070 [ 34.013907] ? do_raw_spin_unlock+0x9e/0x2e0 [ 34.018313] ? copy_mount_string+0x40/0x40 [ 34.022538] ? rcu_pm_notify+0xc0/0xc0 [ 34.026425] ? copy_mount_options+0x5f/0x380 [ 34.031087] ? rcu_read_lock_sched_held+0x108/0x120 [ 34.036094] ? kmem_cache_alloc_trace+0x616/0x780 [ 34.040929] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 34.046463] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 34.051991] ? copy_mount_options+0x285/0x380 [ 34.056491] ksys_mount+0x12d/0x140 [ 34.060110] __x64_sys_mount+0xbe/0x150 [ 34.064077] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 34.069088] do_syscall_64+0x1b1/0x800 [ 34.072972] ? syscall_return_slowpath+0x5c0/0x5c0 [ 34.077892] ? syscall_return_slowpath+0x30f/0x5c0 [ 34.082815] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 34.088178] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 34.093026] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 34.098207] RIP: 0033:0x442689 [ 34.101386] RSP: 002b:00007fff62b2dc48 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 34.109085] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000442689 [ 34.116341] RDX: 00000000004a451e RSI: 0000000020000180 RDI: 00000000004ba505 [ 34.123598] RBP: 00007fff62b2e500 R08: 00007fff62b2e500 R09: 0000000000000000 [ 34.130858] R10: 0000000000000000 R11: 0000000000000206 R12: ffffffffffffffff [ 34.138117] R13: 0000000000000003 R14: 0000000000001380 R15: 00007fff62b2dd98 [ 34.145393] CPU: 1 PID: 4512 Comm: syz-executor216 Not tainted 4.17.0-rc3+ #35 [ 34.149521] FAULT_INJECTION: forcing a failure. [ 34.149521] name failslab, interval 1, probability 0, space 0, times 0 [ 34.152750] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 34.152755] Call Trace: [ 34.152776] dump_stack+0x1b9/0x294 [ 34.152793] ? dump_stack_print_info.cold.2+0x52/0x52 [ 34.152814] ? __save_stack_trace+0x7e/0xd0 [ 34.188947] should_fail.cold.4+0xa/0x1a [ 34.193000] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 34.198096] ? save_stack+0x43/0xd0 [ 34.201712] ? kasan_kmalloc+0xc4/0xe0 [ 34.205589] ? kasan_slab_alloc+0x12/0x20 [ 34.209732] ? kmem_cache_alloc+0x12e/0x760 [ 34.214044] ? fuse_alloc_inode+0x96/0x4f0 [ 34.218267] ? alloc_inode+0x63/0x190 [ 34.222059] ? iget5_locked+0x20e/0x570 [ 34.226025] ? graph_lock+0x170/0x170 [ 34.229816] ? print_usage_bug+0xc0/0xc0 [ 34.233868] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 34.238615] ? do_mount+0x564/0x3070 [ 34.242322] ? ksys_mount+0x12d/0x140 [ 34.246111] ? __x64_sys_mount+0xbe/0x150 [ 34.250253] ? find_held_lock+0x36/0x1c0 [ 34.254310] ? __lock_is_held+0xb5/0x140 [ 34.258371] ? check_same_owner+0x320/0x320 [ 34.262695] ? __mutex_init+0x1ef/0x280 [ 34.266662] ? rcu_note_context_switch+0x710/0x710 [ 34.271583] ? __ia32_sys_membarrier+0x150/0x150 [ 34.276332] __should_failslab+0x124/0x180 [ 34.280566] should_failslab+0x9/0x14 [ 34.284361] kmem_cache_alloc_trace+0x2cb/0x780 [ 34.289025] ? init_wait_entry+0x1b0/0x1b0 [ 34.293255] ? find_held_lock+0x36/0x1c0 [ 34.297315] fuse_alloc_inode+0x3ae/0x4f0 [ 34.301453] ? fuse_dev_alloc+0x4e0/0x4e0 [ 34.305589] ? lock_downgrade+0x8e0/0x8e0 [ 34.309734] ? kasan_check_read+0x11/0x20 [ 34.313875] ? do_raw_spin_unlock+0x9e/0x2e0 [ 34.318283] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 34.322860] ? kasan_check_write+0x14/0x20 [ 34.327086] ? find_inode.isra.19+0xc3/0x1d0 [ 34.331486] ? fuse_dev_alloc+0x4e0/0x4e0 [ 34.335626] alloc_inode+0x63/0x190 [ 34.339246] iget5_locked+0x20e/0x570 [ 34.343037] ? fuse_inode_eq+0x80/0x80 [ 34.346920] ? fuse_init_file_inode+0x70/0x70 [ 34.351409] ? inode_lru_isolate+0x580/0x580 [ 34.355805] ? cgwb_kill+0x630/0x630 [ 34.359516] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 34.365046] ? print_usage_bug+0xc0/0xc0 [ 34.369102] fuse_iget+0x1cc/0x820 [ 34.372638] ? fuse_change_attributes+0x810/0x810 [ 34.377475] ? _raw_spin_unlock+0x22/0x30 [ 34.381620] fuse_get_root_inode+0x121/0x190 [ 34.386024] ? fuse_iget+0x820/0x820 [ 34.389740] ? _raw_spin_unlock_bh+0x30/0x40 [ 34.394142] ? bdi_set_max_ratio+0x112/0x150 [ 34.398546] fuse_fill_super+0x11e0/0x1e20 [ 34.402776] ? fuse_get_root_inode+0x190/0x190 [ 34.407352] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 34.412361] ? kasan_check_read+0x11/0x20 [ 34.416504] ? cap_capable+0x1f9/0x260 [ 34.420387] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 34.425918] ? security_capable+0x99/0xc0 [ 34.430063] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 34.435589] ? ns_capable_common+0x13f/0x170 [ 34.439992] ? get_anon_bdev+0x2f0/0x2f0 [ 34.444043] ? sget+0x113/0x150 [ 34.447319] ? fuse_get_root_inode+0x190/0x190 [ 34.451891] mount_nodev+0x6b/0x110 [ 34.455511] fuse_mount+0x2c/0x40 [ 34.458955] mount_fs+0xae/0x328 [ 34.462334] vfs_kern_mount.part.34+0xd4/0x4d0 [ 34.466907] ? may_umount+0xb0/0xb0 [ 34.470525] ? _raw_read_unlock+0x22/0x30 [ 34.474669] ? __get_fs_type+0x97/0xc0 [ 34.478674] do_mount+0x564/0x3070 [ 34.482209] ? copy_mount_string+0x40/0x40 [ 34.486438] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 34.491190] ? retint_kernel+0x10/0x10 [ 34.495075] ? copy_mount_options+0x1e3/0x380 [ 34.499564] ? copy_mount_options+0x1f0/0x380 [ 34.504051] ? __sanitizer_cov_trace_pc+0x4b/0x50 [ 34.508889] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 34.514418] ? copy_mount_options+0x285/0x380 [ 34.518907] ksys_mount+0x12d/0x140 [ 34.522528] __x64_sys_mount+0xbe/0x150 [ 34.526493] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 34.531503] do_syscall_64+0x1b1/0x800 [ 34.535384] ? syscall_return_slowpath+0x5c0/0x5c0 [ 34.540306] ? syscall_return_slowpath+0x30f/0x5c0 [ 34.545233] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 34.550590] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 34.555426] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 34.560612] RIP: 0033:0x442689 [ 34.563790] RSP: 002b:00007fff62b2dc48 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 34.571488] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000442689 [ 34.578749] RDX: 00000000004a451e RSI: 0000000020000180 RDI: 00000000004ba505 [ 34.586185] RBP: 00007fff62b2e500 R08: 00007fff62b2e500 R09: 0000000000000000 [ 34.593446] R10: 0000000000000000 R11: 0000000000000206 R12: ffffffffffffffff [ 34.600706] R13: 0000000000000003 R14: 0000000000000000 R15: 00007fff62b2dd98 [ 34.607988] CPU: 0 PID: 4514 Comm: syz-executor216 Not tainted 4.17.0-rc3+ #35 [ 34.615356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 34.624713] Call Trace: [ 34.627313] dump_stack+0x1b9/0x294 [ 34.630953] ? dump_stack_print_info.cold.2+0x52/0x52 [ 34.636167] should_fail.cold.4+0xa/0x1a [ 34.640243] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 34.643116] FAULT_INJECTION: forcing a failure. [ 34.643116] name failslab, interval 1, probability 0, space 0, times 0 [ 34.645350] ? lock_downgrade+0x8e0/0x8e0 [ 34.645369] ? find_held_lock+0x36/0x1c0 [ 34.645383] ? graph_lock+0x170/0x170 [ 34.645398] ? lock_acquire+0x1dc/0x520 [ 34.645412] ? lock_downgrade+0x8e0/0x8e0 [ 34.645436] ? percpu_ref_tryget_live+0x14e/0x300 [ 34.681528] ? find_held_lock+0x36/0x1c0 [ 34.685591] ? lock_downgrade+0x8e0/0x8e0 [ 34.689734] __should_failslab+0x124/0x180 [ 34.693962] should_failslab+0x9/0x14 [ 34.697758] kmem_cache_alloc_trace+0x4b/0x780 [ 34.702347] memcg_kmem_get_cache+0x474/0x870 [ 34.706837] ? mem_cgroup_handle_over_high+0x130/0x130 [ 34.712118] ? check_same_owner+0x320/0x320 [ 34.716434] ? graph_lock+0x170/0x170 [ 34.720255] ? rcu_note_context_switch+0x710/0x710 [ 34.725182] ? __should_failslab+0x12b/0x180 [ 34.729584] kmem_cache_alloc+0x18a/0x760 [ 34.733725] ? find_held_lock+0x36/0x1c0 [ 34.737784] fuse_alloc_inode+0x96/0x4f0 [ 34.741837] ? fuse_dev_alloc+0x4e0/0x4e0 [ 34.745978] ? lock_downgrade+0x8e0/0x8e0 [ 34.750129] ? kasan_check_read+0x11/0x20 [ 34.754276] ? do_raw_spin_unlock+0x9e/0x2e0 [ 34.758676] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 34.763251] ? kasan_check_write+0x14/0x20 [ 34.767480] ? find_inode.isra.19+0xc3/0x1d0 [ 34.771878] ? fuse_dev_alloc+0x4e0/0x4e0 [ 34.776022] alloc_inode+0x63/0x190 [ 34.779644] iget5_locked+0x20e/0x570 [ 34.783438] ? fuse_inode_eq+0x80/0x80 [ 34.787319] ? fuse_init_file_inode+0x70/0x70 [ 34.791811] ? inode_lru_isolate+0x580/0x580 [ 34.796210] ? cgwb_kill+0x630/0x630 [ 34.799919] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 34.805450] ? print_usage_bug+0xc0/0xc0 [ 34.809504] fuse_iget+0x1cc/0x820 [ 34.813045] ? fuse_change_attributes+0x810/0x810 [ 34.817885] ? _raw_spin_unlock+0x22/0x30 [ 34.822030] fuse_get_root_inode+0x121/0x190 [ 34.826430] ? fuse_iget+0x820/0x820 [ 34.830147] ? _raw_spin_unlock_bh+0x30/0x40 [ 34.834565] ? bdi_set_max_ratio+0x112/0x150 [ 34.838969] fuse_fill_super+0x11e0/0x1e20 [ 34.843200] ? fuse_get_root_inode+0x190/0x190 [ 34.847775] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 34.852787] ? kasan_check_read+0x11/0x20 [ 34.856929] ? cap_capable+0x1f9/0x260 [ 34.860824] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 34.866350] ? security_capable+0x99/0xc0 [ 34.870494] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 34.876028] ? ns_capable_common+0x13f/0x170 [ 34.880431] ? get_anon_bdev+0x2f0/0x2f0 [ 34.884483] ? sget+0x113/0x150 [ 34.887756] ? fuse_get_root_inode+0x190/0x190 [ 34.892335] mount_nodev+0x6b/0x110 [ 34.895955] fuse_mount+0x2c/0x40 [ 34.899399] mount_fs+0xae/0x328 [ 34.902766] vfs_kern_mount.part.34+0xd4/0x4d0 [ 34.907340] ? may_umount+0xb0/0xb0 [ 34.910959] ? _raw_read_unlock+0x22/0x30 [ 34.915099] ? __get_fs_type+0x97/0xc0 [ 34.918987] do_mount+0x564/0x3070 [ 34.922521] ? do_raw_spin_unlock+0x9e/0x2e0 [ 34.926923] ? copy_mount_string+0x40/0x40 [ 34.931152] ? rcu_pm_notify+0xc0/0xc0 [ 34.935041] ? copy_mount_options+0x5f/0x380 [ 34.939442] ? rcu_read_lock_sched_held+0x108/0x120 [ 34.944453] ? kmem_cache_alloc_trace+0x616/0x780 [ 34.949295] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 34.954831] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 34.960361] ? copy_mount_options+0x285/0x380 [ 34.964850] ksys_mount+0x12d/0x140 [ 34.968471] __x64_sys_mount+0xbe/0x150 [ 34.972435] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 34.977443] do_syscall_64+0x1b1/0x800 [ 34.981322] ? syscall_return_slowpath+0x5c0/0x5c0 [ 34.986243] ? syscall_return_slowpath+0x30f/0x5c0 [ 34.991180] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 34.996538] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 35.001375] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 35.006551] RIP: 0033:0x442689 [ 35.009728] RSP: 002b:00007fff62b2dc48 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 35.017518] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000442689 [ 35.024775] RDX: 00000000004a451e RSI: 0000000020000180 RDI: 00000000004ba505 [ 35.032034] RBP: 00007fff62b2e500 R08: 00007fff62b2e500 R09: 0000000000000000 [ 35.039292] R10: 0000000000000000 R11: 0000000000000206 R12: ffffffffffffffff [ 35.046550] R13: 0000000000000003 R14: 0000000000000000 R15: 00007fff62b2dd98 [ 35.053828] CPU: 1 PID: 4516 Comm: syz-executor216 Not tainted 4.17.0-rc3+ #35 [ 35.061194] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 35.069401] FAULT_INJECTION: forcing a failure. [ 35.069401] name failslab, interval 1, probability 0, space 0, times 0 [ 35.070542] Call Trace: [ 35.070562] dump_stack+0x1b9/0x294 [ 35.070581] ? dump_stack_print_info.cold.2+0x52/0x52 [ 35.070598] ? lockdep_init_map+0x9/0x10 [ 35.070627] should_fail.cold.4+0xa/0x1a [ 35.101283] ? do_raw_write_unlock.cold.8+0x3d/0x3d [ 35.106295] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 35.111395] ? graph_lock+0x170/0x170 [ 35.115188] ? find_held_lock+0x36/0x1c0 [ 35.119246] ? find_held_lock+0x36/0x1c0 [ 35.123304] ? __lock_is_held+0xb5/0x140 [ 35.127369] ? check_same_owner+0x320/0x320 [ 35.131680] ? make_kgid+0x23/0x30 [ 35.135215] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 35.140744] ? rcu_note_context_switch+0x710/0x710 [ 35.145668] __should_failslab+0x124/0x180 [ 35.150073] should_failslab+0x9/0x14 [ 35.153866] kmem_cache_alloc+0x2af/0x760 [ 35.158009] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 35.162587] ? kasan_check_write+0x14/0x20 [ 35.166816] ? do_raw_spin_lock+0xc1/0x200 [ 35.171046] __d_alloc+0xc0/0xd30 [ 35.174492] ? fuse_iget+0x1dd/0x820 [ 35.178200] ? shrink_dcache_for_umount+0x290/0x290 [ 35.183214] ? fuse_change_attributes+0x810/0x810 [ 35.188054] ? _raw_spin_unlock+0x22/0x30 [ 35.192208] ? fuse_get_root_inode+0x121/0x190 [ 35.196783] ? fuse_iget+0x820/0x820 [ 35.200500] d_make_root+0x42/0x90 [ 35.204034] fuse_fill_super+0x120e/0x1e20 [ 35.208268] ? fuse_get_root_inode+0x190/0x190 [ 35.212863] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 35.217874] ? kasan_check_read+0x11/0x20 [ 35.222018] ? cap_capable+0x1f9/0x260 [ 35.225903] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 35.231430] ? security_capable+0x99/0xc0 [ 35.235577] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 35.241109] ? ns_capable_common+0x13f/0x170 [ 35.245513] ? get_anon_bdev+0x2f0/0x2f0 [ 35.249573] ? sget+0x113/0x150 [ 35.252848] ? fuse_get_root_inode+0x190/0x190 [ 35.257431] mount_nodev+0x6b/0x110 [ 35.261688] fuse_mount+0x2c/0x40 [ 35.265137] mount_fs+0xae/0x328 [ 35.268504] vfs_kern_mount.part.34+0xd4/0x4d0 [ 35.273077] ? may_umount+0xb0/0xb0 [ 35.276696] ? _raw_read_unlock+0x22/0x30 [ 35.280836] ? __get_fs_type+0x97/0xc0 [ 35.284717] do_mount+0x564/0x3070 [ 35.288255] ? copy_mount_string+0x40/0x40 [ 35.292482] ? rcu_pm_notify+0xc0/0xc0 [ 35.296369] ? copy_mount_options+0x5f/0x380 [ 35.300767] ? rcu_read_lock_sched_held+0x108/0x120 [ 35.305779] ? kmem_cache_alloc_trace+0x616/0x780 [ 35.310621] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 35.316154] ? _copy_from_user+0xdf/0x150 [ 35.320308] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 35.325838] ? copy_mount_options+0x285/0x380 [ 35.330332] ksys_mount+0x12d/0x140 [ 35.333954] __x64_sys_mount+0xbe/0x150 [ 35.337922] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 35.342933] do_syscall_64+0x1b1/0x800 [ 35.346814] ? syscall_return_slowpath+0x5c0/0x5c0 [ 35.351737] ? syscall_return_slowpath+0x30f/0x5c0 [ 35.356665] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 35.362028] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 35.366868] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 35.372045] RIP: 0033:0x442689 [ 35.375227] RSP: 002b:00007fff62b2dc48 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 35.382930] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000442689 [ 35.390191] RDX: 00000000004a451e RSI: 0000000020000180 RDI: 00000000004ba505 [ 35.397539] RBP: 00007fff62b2e500 R08: 00007fff62b2e500 R09: 0000000000000000 [ 35.404801] R10: 0000000000000000 R11: 0000000000000206 R12: ffffffffffffffff [ 35.412059] R13: 0000000000000003 R14: 0000000000001380 R15: 00007fff62b2dd98 [ 35.419357] CPU: 0 PID: 4518 Comm: syz-executor216 Not tainted 4.17.0-rc3+ #35 [ 35.426722] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 35.433238] FAULT_INJECTION: forcing a failure. [ 35.433238] name failslab, interval 1, probability 0, space 0, times 0 [ 35.436071] Call Trace: [ 35.436097] dump_stack+0x1b9/0x294 [ 35.436115] ? dump_stack_print_info.cold.2+0x52/0x52 [ 35.436140] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 35.463835] should_fail.cold.4+0xa/0x1a [ 35.467895] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 35.472991] ? __unwind_start+0x166/0x330 [ 35.477131] ? __kernel_text_address+0xd/0x40 [ 35.481620] ? unwind_get_return_address+0x61/0xa0 [ 35.486545] ? graph_lock+0x170/0x170 [ 35.490342] ? graph_lock+0x170/0x170 [ 35.494140] ? find_held_lock+0x36/0x1c0 [ 35.498197] ? __lock_is_held+0xb5/0x140 [ 35.502261] ? check_same_owner+0x320/0x320 [ 35.506580] ? rcu_note_context_switch+0x710/0x710 [ 35.511596] __should_failslab+0x124/0x180 [ 35.515824] should_failslab+0x9/0x14 [ 35.519622] kmem_cache_alloc_trace+0x2cb/0x780 [ 35.524282] ? __legitimize_mnt+0x86/0x130 [ 35.528512] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 35.534046] get_mountpoint+0x14f/0x400 [ 35.538022] ? namespace_unlock+0x1f0/0x1f0 [ 35.542339] ? down_read+0x1b0/0x1b0 [ 35.546050] ? rcu_read_lock_sched_held+0x108/0x120 [ 35.551083] lock_mount+0xfa/0x2e0 [ 35.554620] do_add_mount+0x27/0x370 [ 35.558327] do_mount+0x18e6/0x3070 [ 35.561952] ? copy_mount_string+0x40/0x40 [ 35.566178] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 35.570928] ? retint_kernel+0x10/0x10 [ 35.574813] ? copy_mount_options+0x213/0x380 [ 35.579305] ? write_comp_data+0x70/0x70 [ 35.583358] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 35.588887] ? copy_mount_options+0x285/0x380 [ 35.593378] ksys_mount+0x12d/0x140 [ 35.597002] __x64_sys_mount+0xbe/0x150 [ 35.600974] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 35.605984] do_syscall_64+0x1b1/0x800 [ 35.609862] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 35.614699] ? syscall_return_slowpath+0x5c0/0x5c0 [ 35.619623] ? syscall_return_slowpath+0x30f/0x5c0 [ 35.624722] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 35.630088] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 35.634929] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 35.640105] RIP: 0033:0x442689 [ 35.643283] RSP: 002b:00007fff62b2dc48 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 35.650983] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000442689 [ 35.658242] RDX: 00000000004a451e RSI: 0000000020000180 RDI: 00000000004ba505 [ 35.665502] RBP: 00007fff62b2e500 R08: 00007fff62b2e500 R09: 0000000000000000 [ 35.672765] R10: 0000000000000000 R11: 0000000000000206 R12: ffffffffffffffff [ 35.680027] R13: 0000000000000003 R14: 0000000000000000 R15: 00007fff62b2dd98 [ 35.687303] CPU: 1 PID: 4517 Comm: syz-executor216 Not tainted 4.17.0-rc3+ #35 [ 35.694668] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 35.704026] Call Trace: [ 35.706629] dump_stack+0x1b9/0x294 [ 35.709165] FAULT_INJECTION: forcing a failure. [ 35.709165] name failslab, interval 1, probability 0, space 0, times 0 [ 35.710268] ? dump_stack_print_info.cold.2+0x52/0x52 [ 35.710287] ? unwind_get_return_address+0x61/0xa0 [ 35.710305] ? __save_stack_trace+0x7e/0xd0 [ 35.710325] should_fail.cold.4+0xa/0x1a [ 35.710347] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 35.745002] ? save_stack+0xa9/0xd0 [ 35.748626] ? save_stack+0x43/0xd0 [ 35.752242] ? kasan_kmalloc+0xc4/0xe0 [ 35.756125] ? kasan_slab_alloc+0x12/0x20 [ 35.760267] ? graph_lock+0x170/0x170 [ 35.764056] ? mount_nodev+0x6b/0x110 [ 35.767846] ? fuse_mount+0x2c/0x40 [ 35.771465] ? mount_fs+0xae/0x328 [ 35.774994] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 35.779739] ? do_mount+0x564/0x3070 [ 35.783444] ? ksys_mount+0x12d/0x140 [ 35.787237] ? find_held_lock+0x36/0x1c0 [ 35.791297] ? __lock_is_held+0xb5/0x140 [ 35.795360] ? check_same_owner+0x320/0x320 [ 35.799676] ? rcu_note_context_switch+0x710/0x710 [ 35.804599] __should_failslab+0x124/0x180 [ 35.808827] should_failslab+0x9/0x14 [ 35.812618] kmem_cache_alloc_trace+0x2cb/0x780 [ 35.817290] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 35.822565] ? __lockdep_init_map+0x105/0x590 [ 35.827061] fuse_dentry_init+0x45/0xa0 [ 35.831031] ? fuse_create+0x30/0x30 [ 35.834738] __d_alloc+0x6f8/0xd30 [ 35.838291] ? shrink_dcache_for_umount+0x290/0x290 [ 35.843311] ? fuse_change_attributes+0x810/0x810 [ 35.848147] ? _raw_spin_unlock+0x22/0x30 [ 35.852300] ? fuse_get_root_inode+0x121/0x190 [ 35.856873] ? fuse_iget+0x820/0x820 [ 35.860590] d_make_root+0x42/0x90 [ 35.864121] fuse_fill_super+0x120e/0x1e20 [ 35.868356] ? fuse_get_root_inode+0x190/0x190 [ 35.872933] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 35.877948] ? cap_capable+0x1f9/0x260 [ 35.881837] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 35.887366] ? security_capable+0x99/0xc0 [ 35.891510] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 35.897042] ? ns_capable_common+0x13f/0x170 [ 35.901444] ? get_anon_bdev+0x2f0/0x2f0 [ 35.905496] ? sget+0x113/0x150 [ 35.908771] ? fuse_get_root_inode+0x190/0x190 [ 35.913350] mount_nodev+0x6b/0x110 [ 35.916980] fuse_mount+0x2c/0x40 [ 35.920430] mount_fs+0xae/0x328 [ 35.923796] vfs_kern_mount.part.34+0xd4/0x4d0 [ 35.928372] ? may_umount+0xb0/0xb0 [ 35.931990] ? _raw_read_unlock+0x22/0x30 [ 35.936130] ? __get_fs_type+0x97/0xc0 [ 35.940017] do_mount+0x564/0x3070 [ 35.943574] ? copy_mount_string+0x40/0x40 [ 35.947804] ? rcu_pm_notify+0xc0/0xc0 [ 35.951692] ? copy_mount_options+0x5f/0x380 [ 35.956091] ? rcu_read_lock_sched_held+0x108/0x120 [ 35.961100] ? kmem_cache_alloc_trace+0x616/0x780 [ 35.965938] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 35.971470] ? _copy_from_user+0xdf/0x150 [ 35.975618] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 35.981146] ? copy_mount_options+0x285/0x380 [ 35.985637] ksys_mount+0x12d/0x140 [ 35.989266] __x64_sys_mount+0xbe/0x150 [ 35.993232] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 35.998246] do_syscall_64+0x1b1/0x800 [ 36.002140] ? syscall_return_slowpath+0x5c0/0x5c0 [ 36.007065] ? syscall_return_slowpath+0x30f/0x5c0 [ 36.011996] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 36.017356] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 36.022193] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 36.027374] RIP: 0033:0x442689 [ 36.030556] RSP: 002b:00007fff62b2dc48 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 36.038343] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000442689 [ 36.045603] RDX: 00000000004a451e RSI: 0000000020000180 RDI: 00000000004ba505 [ 36.052863] RBP: 00007fff62b2e500 R08: 00007fff62b2e500 R09: 0000000000000000 [ 36.060126] R10: 0000000000000000 R11: 0000000000000206 R12: ffffffffffffffff [ 36.067400] R13: 0000000000000003 R14: 0000000000001380 R15: 00007fff62b2dd98 [ 36.074677] CPU: 0 PID: 4520 Comm: syz-executor216 Not tainted 4.17.0-rc3+ #35 [ 36.082051] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 36.085974] FAULT_INJECTION: forcing a failure. [ 36.085974] name failslab, interval 1, probability 0, space 0, times 0 [ 36.091399] Call Trace: [ 36.091419] dump_stack+0x1b9/0x294 [ 36.091436] ? dump_stack_print_info.cold.2+0x52/0x52 [ 36.091459] should_fail.cold.4+0xa/0x1a [ 36.091473] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 36.091496] ? lock_downgrade+0x8e0/0x8e0 [ 36.127345] ? find_held_lock+0x36/0x1c0 [ 36.131401] ? graph_lock+0x170/0x170 [ 36.135199] ? lock_acquire+0x1dc/0x520 [ 36.139171] ? lock_downgrade+0x8e0/0x8e0 [ 36.143317] ? percpu_ref_tryget_live+0x14e/0x300 [ 36.148154] ? find_held_lock+0x36/0x1c0 [ 36.152219] ? lock_downgrade+0x8e0/0x8e0 [ 36.156363] __should_failslab+0x124/0x180 [ 36.160594] should_failslab+0x9/0x14 [ 36.164388] kmem_cache_alloc_trace+0x4b/0x780 [ 36.168984] memcg_kmem_get_cache+0x474/0x870 [ 36.173476] ? mem_cgroup_handle_over_high+0x130/0x130 [ 36.178758] ? check_same_owner+0x320/0x320 [ 36.183085] ? graph_lock+0x170/0x170 [ 36.186883] ? rcu_note_context_switch+0x710/0x710 [ 36.191807] ? __should_failslab+0x12b/0x180 [ 36.196213] kmem_cache_alloc+0x18a/0x760 [ 36.200356] ? find_held_lock+0x36/0x1c0 [ 36.204416] fuse_alloc_inode+0x96/0x4f0 [ 36.208470] ? fuse_dev_alloc+0x4e0/0x4e0 [ 36.212610] ? lock_downgrade+0x8e0/0x8e0 [ 36.216762] ? kasan_check_read+0x11/0x20 [ 36.220905] ? do_raw_spin_unlock+0x9e/0x2e0 [ 36.225308] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 36.229887] ? kasan_check_write+0x14/0x20 [ 36.234117] ? find_inode.isra.19+0xc3/0x1d0 [ 36.238518] ? fuse_dev_alloc+0x4e0/0x4e0 [ 36.242662] alloc_inode+0x63/0x190 [ 36.246286] iget5_locked+0x20e/0x570 [ 36.250084] ? fuse_inode_eq+0x80/0x80 [ 36.253963] ? fuse_init_file_inode+0x70/0x70 [ 36.258453] ? inode_lru_isolate+0x580/0x580 [ 36.262853] ? cgwb_kill+0x630/0x630 [ 36.266566] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 36.272100] ? print_usage_bug+0xc0/0xc0 [ 36.276159] fuse_iget+0x1cc/0x820 [ 36.279700] ? fuse_change_attributes+0x810/0x810 [ 36.284538] ? _raw_spin_unlock+0x22/0x30 [ 36.288686] fuse_get_root_inode+0x121/0x190 [ 36.293091] ? fuse_iget+0x820/0x820 [ 36.296806] ? _raw_spin_unlock_bh+0x30/0x40 [ 36.301206] ? bdi_set_max_ratio+0x112/0x150 [ 36.305608] fuse_fill_super+0x11e0/0x1e20 [ 36.309841] ? fuse_get_root_inode+0x190/0x190 [ 36.314422] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 36.319435] ? kasan_check_read+0x11/0x20 [ 36.323583] ? cap_capable+0x1f9/0x260 [ 36.327468] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 36.332997] ? security_capable+0x99/0xc0 [ 36.337153] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 36.342683] ? ns_capable_common+0x13f/0x170 [ 36.347092] ? get_anon_bdev+0x2f0/0x2f0 [ 36.351148] ? sget+0x113/0x150 [ 36.354423] ? fuse_get_root_inode+0x190/0x190 [ 36.359000] mount_nodev+0x6b/0x110 [ 36.362633] fuse_mount+0x2c/0x40 [ 36.366081] mount_fs+0xae/0x328 [ 36.369447] vfs_kern_mount.part.34+0xd4/0x4d0 [ 36.374032] ? may_umount+0xb0/0xb0 [ 36.377653] ? _raw_read_unlock+0x22/0x30 [ 36.381790] ? __get_fs_type+0x97/0xc0 [ 36.385676] do_mount+0x564/0x3070 [ 36.389210] ? do_raw_spin_unlock+0x9e/0x2e0 [ 36.393616] ? copy_mount_string+0x40/0x40 [ 36.397846] ? rcu_pm_notify+0xc0/0xc0 [ 36.401737] ? copy_mount_options+0x5f/0x380 [ 36.406143] ? rcu_read_lock_sched_held+0x108/0x120 [ 36.411156] ? kmem_cache_alloc_trace+0x616/0x780 [ 36.416004] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 36.421541] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 36.427070] ? copy_mount_options+0x285/0x380 [ 36.431566] ksys_mount+0x12d/0x140 [ 36.435187] __x64_sys_mount+0xbe/0x150 [ 36.439154] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 36.444166] do_syscall_64+0x1b1/0x800 [ 36.448048] ? syscall_return_slowpath+0x5c0/0x5c0 [ 36.452971] ? syscall_return_slowpath+0x30f/0x5c0 [ 36.457899] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 36.463263] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 36.468103] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 36.473283] RIP: 0033:0x442689 [ 36.476462] RSP: 002b:00007fff62b2dc48 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 36.484163] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000442689 [ 36.491424] RDX: 00000000004a451e RSI: 0000000020000180 RDI: 00000000004ba505 [ 36.498684] RBP: 00007fff62b2e500 R08: 00007fff62b2e500 R09: 0000000000000000 [ 36.505946] R10: 0000000000000000 R11: 0000000000000206 R12: ffffffffffffffff [ 36.513209] R13: 0000000000000003 R14: 0000000000001380 R15: 00007fff62b2dd98 [ 36.520500] CPU: 1 PID: 4519 Comm: syz-executor216 Not tainted 4.17.0-rc3+ #35 [ 36.527874] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 36.537230] Call Trace: [ 36.539831] dump_stack+0x1b9/0x294 [ 36.543519] ? dump_stack_print_info.cold.2+0x52/0x52 [ 36.545879] FAULT_INJECTION: forcing a failure. [ 36.545879] name failslab, interval 1, probability 0, space 0, times 0 [ 36.548723] should_fail.cold.4+0xa/0x1a [ 36.548741] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 36.548758] ? lock_downgrade+0x8e0/0x8e0 [ 36.548776] ? find_held_lock+0x36/0x1c0 [ 36.548795] ? graph_lock+0x170/0x170 [ 36.581045] ? lock_acquire+0x1dc/0x520 [ 36.585029] ? lock_downgrade+0x8e0/0x8e0 [ 36.589179] ? percpu_ref_tryget_live+0x14e/0x300 [ 36.594024] ? find_held_lock+0x36/0x1c0 [ 36.598087] ? lock_downgrade+0x8e0/0x8e0 [ 36.602240] __should_failslab+0x124/0x180 [ 36.606473] should_failslab+0x9/0x14 [ 36.610277] kmem_cache_alloc_trace+0x4b/0x780 [ 36.614864] memcg_kmem_get_cache+0x474/0x870 [ 36.619355] ? mem_cgroup_handle_over_high+0x130/0x130 [ 36.624637] ? check_same_owner+0x320/0x320 [ 36.628949] ? graph_lock+0x170/0x170 [ 36.632746] ? rcu_note_context_switch+0x710/0x710 [ 36.637671] ? __should_failslab+0x12b/0x180 [ 36.642078] kmem_cache_alloc+0x18a/0x760 [ 36.646221] ? find_held_lock+0x36/0x1c0 [ 36.650282] fuse_alloc_inode+0x96/0x4f0 [ 36.654339] ? fuse_dev_alloc+0x4e0/0x4e0 [ 36.658483] ? lock_downgrade+0x8e0/0x8e0 [ 36.662630] ? kasan_check_read+0x11/0x20 [ 36.666778] ? do_raw_spin_unlock+0x9e/0x2e0 [ 36.671182] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 36.675762] ? kasan_check_write+0x14/0x20 [ 36.679993] ? find_inode.isra.19+0xc3/0x1d0 [ 36.684394] ? fuse_dev_alloc+0x4e0/0x4e0 [ 36.688535] alloc_inode+0x63/0x190 [ 36.692155] iget5_locked+0x20e/0x570 [ 36.695947] ? fuse_inode_eq+0x80/0x80 [ 36.699823] ? fuse_init_file_inode+0x70/0x70 [ 36.704312] ? inode_lru_isolate+0x580/0x580 [ 36.708710] ? cgwb_kill+0x630/0x630 [ 36.712418] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 36.717950] ? print_usage_bug+0xc0/0xc0 [ 36.722008] fuse_iget+0x1cc/0x820 [ 36.725554] ? fuse_change_attributes+0x810/0x810 [ 36.730393] ? _raw_spin_unlock+0x22/0x30 [ 36.734543] fuse_get_root_inode+0x121/0x190 [ 36.738948] ? fuse_iget+0x820/0x820 [ 36.742670] ? _raw_spin_unlock_bh+0x30/0x40 [ 36.748045] ? bdi_set_max_ratio+0x112/0x150 [ 36.752455] fuse_fill_super+0x11e0/0x1e20 [ 36.756695] ? fuse_get_root_inode+0x190/0x190 [ 36.761275] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 36.766288] ? kasan_check_read+0x11/0x20 [ 36.770432] ? cap_capable+0x1f9/0x260 [ 36.774316] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 36.779846] ? security_capable+0x99/0xc0 [ 36.783990] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 36.789519] ? ns_capable_common+0x13f/0x170 [ 36.793921] ? get_anon_bdev+0x2f0/0x2f0 [ 36.797979] ? sget+0x113/0x150 [ 36.801253] ? fuse_get_root_inode+0x190/0x190 [ 36.805829] mount_nodev+0x6b/0x110 [ 36.809452] fuse_mount+0x2c/0x40 [ 36.812909] mount_fs+0xae/0x328 [ 36.816271] vfs_kern_mount.part.34+0xd4/0x4d0 [ 36.820850] ? may_umount+0xb0/0xb0 [ 36.824474] ? _raw_read_unlock+0x22/0x30 [ 36.828613] ? __get_fs_type+0x97/0xc0 [ 36.832497] do_mount+0x564/0x3070 [ 36.836030] ? do_raw_spin_unlock+0x9e/0x2e0 [ 36.840435] ? copy_mount_string+0x40/0x40 [ 36.844668] ? rcu_pm_notify+0xc0/0xc0 [ 36.848553] ? copy_mount_options+0x5f/0x380 [ 36.852961] ? rcu_read_lock_sched_held+0x108/0x120 [ 36.857975] ? kmem_cache_alloc_trace+0x616/0x780 [ 36.862818] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 36.868356] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 36.873975] ? copy_mount_options+0x285/0x380 [ 36.878474] ksys_mount+0x12d/0x140 [ 36.882100] __x64_sys_mount+0xbe/0x150 [ 36.886072] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 36.891087] do_syscall_64+0x1b1/0x800 [ 36.894972] ? syscall_return_slowpath+0x5c0/0x5c0 [ 36.899894] ? syscall_return_slowpath+0x30f/0x5c0 [ 36.904820] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 36.910182] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 36.915030] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 36.929324] RIP: 0033:0x442689 [ 36.932501] RSP: 002b:00007fff62b2dc48 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 36.940201] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000442689 [ 36.947466] RDX: 00000000004a451e RSI: 0000000020000180 RDI: 00000000004ba505 [ 36.954726] RBP: 00007fff62b2e500 R08: 00007fff62b2e500 R09: 0000000000000000 [ 36.961985] R10: 0000000000000000 R11: 0000000000000206 R12: ffffffffffffffff [ 36.969253] R13: 0000000000000003 R14: 0000000000001380 R15: 00007fff62b2dd98 [ 36.976531] CPU: 0 PID: 4521 Comm: syz-executor216 Not tainted 4.17.0-rc3+ #35 [ 36.983898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 36.987817] FAULT_INJECTION: forcing a failure. [ 36.987817] name failslab, interval 1, probability 0, space 0, times 0 [ 36.993247] Call Trace: [ 36.993269] dump_stack+0x1b9/0x294 [ 36.993287] ? dump_stack_print_info.cold.2+0x52/0x52 [ 36.993311] ? unwind_get_return_address+0x61/0xa0 [ 37.020715] ? __save_stack_trace+0x7e/0xd0 [ 37.025039] should_fail.cold.4+0xa/0x1a [ 37.029096] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 37.034193] ? save_stack+0xa9/0xd0 [ 37.037815] ? save_stack+0x43/0xd0 [ 37.041436] ? kasan_kmalloc+0xc4/0xe0 [ 37.045316] ? kasan_slab_alloc+0x12/0x20 [ 37.049456] ? graph_lock+0x170/0x170 [ 37.053251] ? mount_nodev+0x6b/0x110 [ 37.057043] ? fuse_mount+0x2c/0x40 [ 37.060663] ? mount_fs+0xae/0x328 [ 37.064198] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 37.068947] ? do_mount+0x564/0x3070 [ 37.072653] ? ksys_mount+0x12d/0x140 [ 37.076450] ? find_held_lock+0x36/0x1c0 [ 37.080511] ? __lock_is_held+0xb5/0x140 [ 37.084575] ? check_same_owner+0x320/0x320 [ 37.088892] ? rcu_note_context_switch+0x710/0x710 [ 37.093820] __should_failslab+0x124/0x180 [ 37.098050] should_failslab+0x9/0x14 [ 37.101858] kmem_cache_alloc_trace+0x2cb/0x780 [ 37.106522] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 37.111532] ? __lockdep_init_map+0x105/0x590 [ 37.116026] fuse_dentry_init+0x45/0xa0 [ 37.119992] ? fuse_create+0x30/0x30 [ 37.123699] __d_alloc+0x6f8/0xd30 [ 37.127237] ? shrink_dcache_for_umount+0x290/0x290 [ 37.132252] ? fuse_change_attributes+0x810/0x810 [ 37.137088] ? _raw_spin_unlock+0x22/0x30 [ 37.141238] ? fuse_get_root_inode+0x121/0x190 [ 37.145815] ? fuse_iget+0x820/0x820 [ 37.149534] d_make_root+0x42/0x90 [ 37.153068] fuse_fill_super+0x120e/0x1e20 [ 37.157304] ? fuse_get_root_inode+0x190/0x190 [ 37.161884] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 37.166897] ? kasan_check_read+0x11/0x20 [ 37.171044] ? cap_capable+0x1f9/0x260 [ 37.174929] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 37.180461] ? security_capable+0x99/0xc0 [ 37.184607] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 37.190139] ? ns_capable_common+0x13f/0x170 [ 37.194542] ? get_anon_bdev+0x2f0/0x2f0 [ 37.198766] ? sget+0x113/0x150 [ 37.202041] ? fuse_get_root_inode+0x190/0x190 [ 37.206614] mount_nodev+0x6b/0x110 [ 37.210235] fuse_mount+0x2c/0x40 [ 37.213683] mount_fs+0xae/0x328 [ 37.217051] vfs_kern_mount.part.34+0xd4/0x4d0 [ 37.221625] ? may_umount+0xb0/0xb0 [ 37.225245] ? _raw_read_unlock+0x22/0x30 [ 37.229385] ? __get_fs_type+0x97/0xc0 [ 37.233270] do_mount+0x564/0x3070 [ 37.236806] ? copy_mount_string+0x40/0x40 [ 37.241033] ? rcu_pm_notify+0xc0/0xc0 [ 37.244922] ? copy_mount_options+0x5f/0x380 [ 37.249329] ? rcu_read_lock_sched_held+0x108/0x120 [ 37.254339] ? kmem_cache_alloc_trace+0x616/0x780 [ 37.259176] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 37.264704] ? _copy_from_user+0xdf/0x150 [ 37.268848] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 37.274378] ? copy_mount_options+0x285/0x380 [ 37.278873] ksys_mount+0x12d/0x140 [ 37.282495] __x64_sys_mount+0xbe/0x150 [ 37.286461] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 37.291472] do_syscall_64+0x1b1/0x800 [ 37.295353] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 37.300192] ? syscall_return_slowpath+0x5c0/0x5c0 [ 37.305113] ? syscall_return_slowpath+0x30f/0x5c0 [ 37.310041] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 37.315401] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 37.320242] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 37.325422] RIP: 0033:0x442689 [ 37.328601] RSP: 002b:00007fff62b2dc48 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 37.336304] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000442689 [ 37.343562] RDX: 00000000004a451e RSI: 0000000020000180 RDI: 00000000004ba505 [ 37.350828] RBP: 00007fff62b2e500 R08: 00007fff62b2e500 R09: 0000000000000000 [ 37.358089] R10: 0000000000000000 R11: 0000000000000206 R12: ffffffffffffffff [ 37.365349] R13: 0000000000000003 R14: 0000000000001380 R15: 00007fff62b2dd98 [ 37.372629] CPU: 1 PID: 4522 Comm: syz-executor216 Not tainted 4.17.0-rc3+ #35 [ 37.380001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 37.389362] Call Trace: [ 37.391963] dump_stack+0x1b9/0x294 [ 37.395607] ? dump_stack_print_info.cold.2+0x52/0x52 [ 37.400809] ? __save_stack_trace+0x7e/0xd0 [ 37.405149] should_fail.cold.4+0xa/0x1a [ 37.409223] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 37.414333] ? save_stack+0x43/0xd0 [ 37.414344] FAULT_INJECTION: forcing a failure. [ 37.414344] name failslab, interval 1, probability 0, space 0, times 0 [ 37.417965] ? kasan_kmalloc+0xc4/0xe0 [ 37.417980] ? kasan_slab_alloc+0x12/0x20 [ 37.417993] ? kmem_cache_alloc+0x12e/0x760 [ 37.418007] ? fuse_alloc_inode+0x96/0x4f0 [ 37.418021] ? alloc_inode+0x63/0x190 [ 37.418034] ? iget5_locked+0x20e/0x570 [ 37.418049] ? graph_lock+0x170/0x170 [ 37.418060] ? print_usage_bug+0xc0/0xc0 [ 37.418080] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 37.418092] ? do_mount+0x564/0x3070 [ 37.418103] ? ksys_mount+0x12d/0x140 [ 37.473601] ? __x64_sys_mount+0xbe/0x150 [ 37.477746] ? find_held_lock+0x36/0x1c0 [ 37.481804] ? __lock_is_held+0xb5/0x140 [ 37.485869] ? check_same_owner+0x320/0x320 [ 37.490184] ? __mutex_init+0x1ef/0x280 [ 37.494154] ? rcu_note_context_switch+0x710/0x710 [ 37.499079] ? __ia32_sys_membarrier+0x150/0x150 [ 37.503835] __should_failslab+0x124/0x180 [ 37.508076] should_failslab+0x9/0x14 [ 37.511887] kmem_cache_alloc_trace+0x2cb/0x780 [ 37.516553] ? init_wait_entry+0x1b0/0x1b0 [ 37.520796] ? find_held_lock+0x36/0x1c0 [ 37.524854] fuse_alloc_inode+0x3ae/0x4f0 [ 37.529003] ? fuse_dev_alloc+0x4e0/0x4e0 [ 37.533145] ? lock_downgrade+0x8e0/0x8e0 [ 37.537314] ? kasan_check_read+0x11/0x20 [ 37.541456] ? do_raw_spin_unlock+0x9e/0x2e0 [ 37.545859] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 37.550436] ? kasan_check_write+0x14/0x20 [ 37.554667] ? find_inode.isra.19+0xc3/0x1d0 [ 37.559750] ? fuse_dev_alloc+0x4e0/0x4e0 [ 37.563891] alloc_inode+0x63/0x190 [ 37.567515] iget5_locked+0x20e/0x570 [ 37.571313] ? fuse_inode_eq+0x80/0x80 [ 37.575200] ? fuse_init_file_inode+0x70/0x70 [ 37.579692] ? inode_lru_isolate+0x580/0x580 [ 37.584094] ? cgwb_kill+0x630/0x630 [ 37.587807] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 37.593337] ? print_usage_bug+0xc0/0xc0 [ 37.597417] fuse_iget+0x1cc/0x820 [ 37.600957] ? fuse_change_attributes+0x810/0x810 [ 37.605797] ? _raw_spin_unlock+0x22/0x30 [ 37.609941] fuse_get_root_inode+0x121/0x190 [ 37.614344] ? fuse_iget+0x820/0x820 [ 37.618061] ? _raw_spin_unlock_bh+0x30/0x40 [ 37.622467] ? bdi_set_max_ratio+0x112/0x150 [ 37.626871] fuse_fill_super+0x11e0/0x1e20 [ 37.631103] ? fuse_get_root_inode+0x190/0x190 [ 37.635680] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 37.640694] ? kasan_check_read+0x11/0x20 [ 37.644843] ? cap_capable+0x1f9/0x260 [ 37.648726] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 37.654256] ? security_capable+0x99/0xc0 [ 37.658405] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 37.663941] ? ns_capable_common+0x13f/0x170 [ 37.668343] ? get_anon_bdev+0x2f0/0x2f0 [ 37.672399] ? sget+0x113/0x150 [ 37.675676] ? fuse_get_root_inode+0x190/0x190 [ 37.680250] mount_nodev+0x6b/0x110 [ 37.683873] fuse_mount+0x2c/0x40 [ 37.687350] mount_fs+0xae/0x328 [ 37.690712] vfs_kern_mount.part.34+0xd4/0x4d0 [ 37.695289] ? may_umount+0xb0/0xb0 [ 37.698909] ? _raw_read_unlock+0x22/0x30 [ 37.703050] ? __get_fs_type+0x97/0xc0 [ 37.706935] do_mount+0x564/0x3070 [ 37.710469] ? do_raw_spin_unlock+0x9e/0x2e0 [ 37.714879] ? copy_mount_string+0x40/0x40 [ 37.719118] ? rcu_pm_notify+0xc0/0xc0 [ 37.723007] ? copy_mount_options+0x5f/0x380 [ 37.727844] ? rcu_read_lock_sched_held+0x108/0x120 [ 37.732853] ? kmem_cache_alloc_trace+0x616/0x780 [ 37.737692] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 37.743228] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 37.748758] ? copy_mount_options+0x285/0x380 [ 37.753253] ksys_mount+0x12d/0x140 [ 37.756876] __x64_sys_mount+0xbe/0x150 [ 37.760844] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 37.765868] do_syscall_64+0x1b1/0x800 [ 37.769753] ? syscall_return_slowpath+0x5c0/0x5c0 [ 37.774678] ? syscall_return_slowpath+0x30f/0x5c0 [ 37.779606] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 37.784969] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 37.789806] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 37.794982] RIP: 0033:0x442689 [ 37.798163] RSP: 002b:00007fff62b2dc48 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 37.805863] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000442689 [ 37.813123] RDX: 00000000004a451e RSI: 0000000020000180 RDI: 00000000004ba505 [ 37.820387] RBP: 00007fff62b2e500 R08: 00007fff62b2e500 R09: 0000000000000000 [ 37.827649] R10: 0000000000000000 R11: 0000000000000206 R12: ffffffffffffffff [ 37.834911] R13: 0000000000000003 R14: 0000000000001380 R15: 00007fff62b2dd98 [ 37.842199] CPU: 0 PID: 4526 Comm: syz-executor216 Not tainted 4.17.0-rc3+ #35 [ 37.849569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 37.858925] Call Trace: [ 37.861518] dump_stack+0x1b9/0x294 [ 37.865161] ? dump_stack_print_info.cold.2+0x52/0x52 [ 37.870364] ? lock_downgrade+0x8e0/0x8e0 [ 37.874535] should_fail.cold.4+0xa/0x1a [ 37.878597] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 37.883703] ? graph_lock+0x170/0x170 [ 37.887487] ? kernel_text_address+0x79/0xf0 [ 37.892331] ? __unwind_start+0x166/0x330 [ 37.896466] ? __kernel_text_address+0xd/0x40 [ 37.900952] ? find_held_lock+0x36/0x1c0 [ 37.905020] ? __lock_is_held+0xb5/0x140 [ 37.909073] ? check_same_owner+0x320/0x320 [ 37.914358] ? device_create_groups_vargs+0x1ff/0x270 [ 37.919549] ? device_create_vargs+0x46/0x60 [ 37.923956] ? bdi_register_va.part.10+0xbb/0x9b0 [ 37.928793] ? rcu_note_context_switch+0x710/0x710 [ 37.933714] ? mount_nodev+0x6b/0x110 [ 37.937508] ? fuse_mount+0x2c/0x40 [ 37.941118] ? mount_fs+0xae/0x328 [ 37.944654] __should_failslab+0x124/0x180 [ 37.948880] should_failslab+0x9/0x14 [ 37.952670] kmem_cache_alloc+0x2af/0x760 [ 37.956805] skb_clone+0x1ed/0x4f0 [ 37.960331] ? refcount_add_not_zero+0x2d0/0x320 [ 37.965075] ? skb_split+0x11d0/0x11d0 [ 37.968960] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 37.973960] ? netlink_trim+0x1b2/0x370 [ 37.977930] ? netlink_skb_destructor+0x210/0x210 [ 37.982764] ? cleanup_uevent_env+0x40/0x40 [ 37.987084] netlink_broadcast_filtered+0x1024/0x1580 [ 37.992262] ? __netlink_sendskb+0xd0/0xd0 [ 37.996486] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 38.002012] ? refcount_inc_not_zero+0x1dd/0x2d0 [ 38.006760] ? refcount_add_not_zero+0x320/0x320 [ 38.011502] ? cleanup_uevent_env+0x40/0x40 [ 38.015816] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 38.020818] kobject_uevent_env+0x6e4/0xea0 [ 38.025128] ? device_pm_add+0x221/0x340 [ 38.029186] kobject_uevent+0x1f/0x30 [ 38.032970] device_add+0xb01/0x16d0 [ 38.036670] ? device_private_init+0x230/0x230 [ 38.041246] ? kfree+0x1e9/0x260 [ 38.044608] ? kfree_const+0x5e/0x70 [ 38.048309] device_create_groups_vargs+0x1ff/0x270 [ 38.053316] device_create_vargs+0x46/0x60 [ 38.057548] bdi_register_va.part.10+0xbb/0x9b0 [ 38.062218] ? cgwb_kill+0x630/0x630 [ 38.065922] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 38.071438] ? bdi_init+0x416/0x510 [ 38.075056] ? wb_init+0x9e0/0x9e0 [ 38.078579] ? bdi_alloc_node+0x67/0xe0 [ 38.082534] ? bdi_alloc_node+0x67/0xe0 [ 38.086500] ? rcu_read_lock_sched_held+0x108/0x120 [ 38.091510] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 38.096773] ? _raw_spin_unlock+0x22/0x30 [ 38.100923] bdi_register_va+0x68/0x80 [ 38.104815] super_setup_bdi_name+0x123/0x220 [ 38.109300] ? kill_block_super+0x100/0x100 [ 38.113604] ? kmem_cache_alloc_trace+0x616/0x780 [ 38.118444] ? match_wildcard+0x3c0/0x3c0 [ 38.122588] ? trace_hardirqs_on+0xd/0x10 [ 38.126725] fuse_fill_super+0xe6e/0x1e20 [ 38.130866] ? fuse_get_root_inode+0x190/0x190 [ 38.135440] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 38.140453] ? kasan_check_read+0x11/0x20 [ 38.144589] ? cap_capable+0x1f9/0x260 [ 38.148465] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 38.153987] ? security_capable+0x99/0xc0 [ 38.158137] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 38.163677] ? ns_capable_common+0x13f/0x170 [ 38.168088] ? get_anon_bdev+0x2f0/0x2f0 [ 38.172142] ? sget+0x113/0x150 [ 38.175403] ? fuse_get_root_inode+0x190/0x190 [ 38.179967] mount_nodev+0x6b/0x110 [ 38.183588] fuse_mount+0x2c/0x40 [ 38.187046] mount_fs+0xae/0x328 [ 38.190402] vfs_kern_mount.part.34+0xd4/0x4d0 [ 38.194968] ? may_umount+0xb0/0xb0 [ 38.198579] ? _raw_read_unlock+0x22/0x30 [ 38.202711] ? __get_fs_type+0x97/0xc0 [ 38.206585] do_mount+0x564/0x3070 [ 38.210118] ? interrupt_entry+0xb1/0xf0 [ 38.214173] ? copy_mount_string+0x40/0x40 [ 38.218403] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 38.223153] ? retint_kernel+0x10/0x10 [ 38.227039] ? copy_mount_options+0x1e3/0x380 [ 38.231522] ? write_comp_data+0x11/0x70 [ 38.235576] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 38.241094] ? copy_mount_options+0x285/0x380 [ 38.245574] ksys_mount+0x12d/0x140 [ 38.249197] __x64_sys_mount+0xbe/0x150 [ 38.253162] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 38.258171] do_syscall_64+0x1b1/0x800 [ 38.262049] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 38.266885] ? syscall_return_slowpath+0x5c0/0x5c0 [ 38.271799] ? syscall_return_slowpath+0x30f/0x5c0 [ 38.276723] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 38.282082] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 38.286911] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 38.292084] RIP: 0033:0x442689 [ 38.295698] RSP: 002b:00007fff62b2dc48 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 38.303386] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000442689 [ 38.310637] RDX: 00000000004a451e RSI: 0000000020000180 RDI: 00000000004ba505 [ 38.317889] RBP: 00007fff62b2e500 R08: 00007fff62b2e500 R09: 0000000000000000 [ 38.325149] R10: 0000000000000000 R11: 0000000000000206 R12: ffffffffffffffff [ 38.332410] R13: 0000000000000003 R14: 0000000000001380 R15: 00007fff62b2dd98 [ 38.342348] FAULT_INJECTION: forcing a failure. [ 38.342348] name failslab, interval 1, probability 0, space 0, times 0 [ 38.342494] FAULT_INJECTION: forcing a failure. [ 38.342494] name failslab, interval 1, probability 0, space 0, times 0 [ 38.353758] CPU: 0 PID: 4525 Comm: syz-executor216 Not tainted 4.17.0-rc3+ #35 [ 38.372254] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 38.381594] Call Trace: [ 38.384178] dump_stack+0x1b9/0x294 [ 38.387801] ? dump_stack_print_info.cold.2+0x52/0x52 [ 38.393004] ? graph_lock+0x170/0x170 [ 38.396804] should_fail.cold.4+0xa/0x1a [ 38.400866] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 38.405970] ? find_held_lock+0x36/0x1c0 [ 38.410026] ? graph_lock+0x170/0x170 [ 38.413825] ? find_held_lock+0x36/0x1c0 [ 38.417887] ? __lock_is_held+0xb5/0x140 [ 38.421954] ? check_same_owner+0x320/0x320 [ 38.426278] ? rcu_note_context_switch+0x710/0x710 [ 38.431206] __should_failslab+0x124/0x180 [ 38.435436] should_failslab+0x9/0x14 [ 38.439229] kmem_cache_alloc+0x2af/0x760 [ 38.443378] __d_alloc+0xc0/0xd30 [ 38.446841] ? shrink_dcache_for_umount+0x290/0x290 [ 38.451859] ? __lock_acquire+0x7f5/0x5140 [ 38.456093] ? debug_check_no_locks_freed+0x310/0x310 [ 38.461275] ? graph_lock+0x170/0x170 [ 38.465075] ? find_held_lock+0x36/0x1c0 [ 38.469135] d_alloc+0x8e/0x370 [ 38.472412] ? print_usage_bug+0xc0/0xc0 [ 38.476465] ? __d_alloc+0xd30/0xd30 [ 38.480178] d_alloc_parallel+0x152/0x1e80 [ 38.484407] ? graph_lock+0x170/0x170 [ 38.488205] ? __lock_acquire+0x7f5/0x5140 [ 38.492437] ? __d_lookup_rcu+0xa80/0xa80 [ 38.496579] ? print_usage_bug+0xc0/0xc0 [ 38.500632] ? find_held_lock+0x36/0x1c0 [ 38.504693] ? lock_downgrade+0x8e0/0x8e0 [ 38.508847] ? mark_held_locks+0xc9/0x160 [ 38.513030] ? __raw_spin_lock_init+0x1c/0x100 [ 38.517614] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 38.522624] ? __lockdep_init_map+0x105/0x590 [ 38.527119] ? __lockdep_init_map+0x105/0x590 [ 38.531608] ? lockdep_init_map+0x9/0x10 [ 38.535662] ? __init_waitqueue_head+0x96/0x140 [ 38.540325] ? init_wait_entry+0x1b0/0x1b0 [ 38.544556] ? d_alloc_parallel+0x1e80/0x1e80 [ 38.549046] ? lock_release+0xa10/0xa10 [ 38.553013] ? graph_lock+0x170/0x170 [ 38.556811] __lookup_slow+0x1e6/0x540 [ 38.560702] ? vfs_unlink+0x510/0x510 [ 38.564498] ? d_lookup+0x219/0x330 [ 38.568134] lookup_one_len+0x1c7/0x210 [ 38.572103] ? lookup_one_len_unlocked+0xf0/0xf0 [ 38.577376] ? down_write+0x87/0x120 [ 38.581081] ? start_creating+0xb1/0x200 [ 38.585133] ? down_read+0x1b0/0x1b0 [ 38.588852] ? mntput+0x74/0xa0 [ 38.592127] ? simple_pin_fs+0xa4/0x190 [ 38.596102] start_creating+0xc6/0x200 [ 38.600027] debugfs_create_dir+0x23/0x3c0 [ 38.604259] bdi_register_va.part.10+0x318/0x9b0 [ 38.609008] ? cgwb_kill+0x630/0x630 [ 38.612720] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 38.618250] ? bdi_init+0x416/0x510 [ 38.621873] ? wb_init+0x9e0/0x9e0 [ 38.625408] ? bdi_alloc_node+0x67/0xe0 [ 38.629376] ? bdi_alloc_node+0x67/0xe0 [ 38.633347] ? rcu_read_lock_sched_held+0x108/0x120 [ 38.638354] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 38.643630] ? _raw_spin_unlock+0x22/0x30 [ 38.647773] bdi_register_va+0x68/0x80 [ 38.651656] super_setup_bdi_name+0x123/0x220 [ 38.656142] ? kill_block_super+0x100/0x100 [ 38.660461] ? kmem_cache_alloc_trace+0x616/0x780 [ 38.665296] ? match_wildcard+0x3c0/0x3c0 [ 38.669434] ? trace_hardirqs_on+0xd/0x10 [ 38.673581] fuse_fill_super+0xe6e/0x1e20 [ 38.677819] ? fuse_get_root_inode+0x190/0x190 [ 38.682397] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 38.688192] ? kasan_check_read+0x11/0x20 [ 38.692337] ? cap_capable+0x1f9/0x260 [ 38.696221] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 38.701748] ? security_capable+0x99/0xc0 [ 38.705892] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 38.711425] ? ns_capable_common+0x13f/0x170 [ 38.715833] ? get_anon_bdev+0x2f0/0x2f0 [ 38.719886] ? sget+0x113/0x150 [ 38.723161] ? fuse_get_root_inode+0x190/0x190 [ 38.727735] mount_nodev+0x6b/0x110 [ 38.731357] fuse_mount+0x2c/0x40 [ 38.734809] mount_fs+0xae/0x328 [ 38.738172] vfs_kern_mount.part.34+0xd4/0x4d0 [ 38.742747] ? may_umount+0xb0/0xb0 [ 38.746370] ? _raw_read_unlock+0x22/0x30 [ 38.750515] ? __get_fs_type+0x97/0xc0 [ 38.754404] do_mount+0x564/0x3070 [ 38.757942] ? copy_mount_string+0x40/0x40 [ 38.762172] ? rcu_pm_notify+0xc0/0xc0 [ 38.766063] ? copy_mount_options+0x5f/0x380 [ 38.770481] ? rcu_read_lock_sched_held+0x108/0x120 [ 38.775496] ? kmem_cache_alloc_trace+0x616/0x780 [ 38.780345] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 38.785888] ? copy_mount_options+0x285/0x380 [ 38.790382] ksys_mount+0x12d/0x140 [ 38.794009] __x64_sys_mount+0xbe/0x150 [ 38.797981] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 38.802997] do_syscall_64+0x1b1/0x800 [ 38.806883] ? syscall_return_slowpath+0x5c0/0x5c0 [ 38.811817] ? syscall_return_slowpath+0x30f/0x5c0 [ 38.816745] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 38.822108] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 38.826951] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 38.832133] RIP: 0033:0x442689 [ 38.835488] RSP: 002b:00007fff62b2dc48 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 38.843213] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000442689 [ 38.850478] RDX: 00000000004a451e RSI: 0000000020000180 RDI: 00000000004ba505 [ 38.857920] RBP: 00007fff62b2e500 R08: 00007fff62b2e500 R09: 0000000000000000 [ 38.865183] R10: 0000000000000000 R11: 0000000000000206 R12: ffffffffffffffff [ 38.872444] R13: 0000000000000003 R14: 0000000000001380 R15: 00007fff62b2dd98 [ 38.879726] CPU: 1 PID: 4527 Comm: syz-executor216 Not tainted 4.17.0-rc3+ #35 [ 38.887090] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 38.896449] Call Trace: [ 38.899043] dump_stack+0x1b9/0x294 [ 38.902674] ? dump_stack_print_info.cold.2+0x52/0x52 [ 38.907863] ? is_bpf_text_address+0xd7/0x170 [ 38.912358] ? kernel_text_address+0x79/0xf0 [ 38.916769] ? __unwind_start+0x166/0x330 [ 38.920922] should_fail.cold.4+0xa/0x1a [ 38.924986] ? __save_stack_trace+0x7e/0xd0 [ 38.929310] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 38.934417] ? graph_lock+0x170/0x170 [ 38.938226] ? save_stack+0x43/0xd0 [ 38.941853] ? kasan_kmalloc+0xc4/0xe0 [ 38.945740] ? kasan_slab_alloc+0x12/0x20 [ 38.949890] ? find_held_lock+0x36/0x1c0 [ 38.953951] ? __lock_is_held+0xb5/0x140 [ 38.958021] ? check_same_owner+0x320/0x320 [ 38.962343] ? rcu_note_context_switch+0x710/0x710 [ 38.967272] __should_failslab+0x124/0x180 [ 38.971513] should_failslab+0x9/0x14 [ 38.975318] kmem_cache_alloc_node_trace+0x26f/0x770 [ 38.980430] __kmalloc_node_track_caller+0x33/0x70 [ 38.985362] __kmalloc_reserve.isra.38+0x3a/0xe0 [ 38.990119] __alloc_skb+0x14d/0x780 [ 38.993836] ? skb_scrub_packet+0x580/0x580 [ 38.998158] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 39.003365] ? netlink_has_listeners+0x2ff/0x4c0 [ 39.008124] ? netlink_tap_init_net+0x3c0/0x3c0 [ 39.012797] kobject_uevent_env+0x801/0xea0 [ 39.017117] ? device_pm_add+0x221/0x340 [ 39.021181] kobject_uevent+0x1f/0x30 [ 39.024982] device_add+0xb01/0x16d0 [ 39.028702] ? device_private_init+0x230/0x230 [ 39.033290] ? kfree+0x1e9/0x260 [ 39.036657] ? kfree_const+0x5e/0x70 [ 39.040376] device_create_groups_vargs+0x1ff/0x270 [ 39.045393] device_create_vargs+0x46/0x60 [ 39.049632] bdi_register_va.part.10+0xbb/0x9b0 [ 39.054307] ? cgwb_kill+0x630/0x630 [ 39.058035] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 39.063570] ? bdi_init+0x416/0x510 [ 39.067194] ? wb_init+0x9e0/0x9e0 [ 39.070735] ? bdi_alloc_node+0x67/0xe0 [ 39.074704] ? bdi_alloc_node+0x67/0xe0 [ 39.078682] ? rcu_read_lock_sched_held+0x108/0x120 [ 39.083703] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 39.088989] ? _raw_spin_unlock+0x22/0x30 [ 39.093140] bdi_register_va+0x68/0x80 [ 39.097032] super_setup_bdi_name+0x123/0x220 [ 39.101529] ? kill_block_super+0x100/0x100 [ 39.105850] ? kmem_cache_alloc_trace+0x616/0x780 [ 39.110700] ? match_wildcard+0x3c0/0x3c0 [ 39.114848] ? trace_hardirqs_on+0xd/0x10 [ 39.119017] fuse_fill_super+0xe6e/0x1e20 [ 39.123173] ? fuse_get_root_inode+0x190/0x190 [ 39.127755] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 39.132772] ? kasan_check_read+0x11/0x20 [ 39.136921] ? cap_capable+0x1f9/0x260 [ 39.140817] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 39.146352] ? security_capable+0x99/0xc0 [ 39.150506] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 39.156045] ? ns_capable_common+0x13f/0x170 [ 39.160455] ? get_anon_bdev+0x2f0/0x2f0 [ 39.164513] ? sget+0x113/0x150 [ 39.167790] ? fuse_get_root_inode+0x190/0x190 [ 39.172369] mount_nodev+0x6b/0x110 [ 39.175992] fuse_mount+0x2c/0x40 [ 39.179454] mount_fs+0xae/0x328 [ 39.182821] vfs_kern_mount.part.34+0xd4/0x4d0 [ 39.187403] ? may_umount+0xb0/0xb0 [ 39.191026] ? _raw_read_unlock+0x22/0x30 [ 39.195169] ? __get_fs_type+0x97/0xc0 [ 39.199057] do_mount+0x564/0x3070 [ 39.202600] ? copy_mount_string+0x40/0x40 [ 39.206832] ? rcu_pm_notify+0xc0/0xc0 [ 39.210725] ? copy_mount_options+0x5f/0x380 [ 39.215130] ? rcu_read_lock_sched_held+0x108/0x120 [ 39.220144] ? kmem_cache_alloc_trace+0x616/0x780 [ 39.224989] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 39.230523] ? _copy_from_user+0xdf/0x150 [ 39.234673] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 39.240206] ? copy_mount_options+0x285/0x380 [ 39.244700] ksys_mount+0x12d/0x140 [ 39.248325] __x64_sys_mount+0xbe/0x150 [ 39.252295] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 39.257313] do_syscall_64+0x1b1/0x800 [ 39.261199] ? syscall_return_slowpath+0x5c0/0x5c0 [ 39.266129] ? syscall_return_slowpath+0x30f/0x5c0 [ 39.271058] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 39.276427] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 39.281274] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 39.286456] RIP: 0033:0x442689 [ 39.289637] RSP: 002b:00007fff62b2dc48 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 39.297340] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000442689 [ 39.304606] RDX: 00000000004a451e RSI: 0000000020000180 RDI: 00000000004ba505 [ 39.311875] RBP: 00007fff62b2e500 R08: 00007fff62b2e500 R09: 0000000000000000 [ 39.319139] R10: 0000000000000000 R11: 0000000000000206 R12: ffffffffffffffff [ 39.326579] R13: 0000000000000003 R14: 0000000000001380 R15: 00007fff62b2dd98 [ 39.348944] FAULT_INJECTION: forcing a failure. [ 39.348944] name failslab, interval 1, probability 0, space 0, times 0 [ 39.360272] CPU: 1 PID: 4528 Comm: syz-executor216 Not tainted 4.17.0-rc3+ #35 [ 39.367634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 39.376991] Call Trace: [ 39.377455] FAULT_INJECTION: forcing a failure. [ 39.377455] name failslab, interval 1, probability 0, space 0, times 0 [ 39.379578] dump_stack+0x1b9/0x294 [ 39.379606] ? dump_stack_print_info.cold.2+0x52/0x52 [ 39.379632] ? __lock_acquire+0x7f5/0x5140 [ 39.379649] ? __lock_acquire+0x7f5/0x5140 [ 39.379684] should_fail.cold.4+0xa/0x1a [ 39.412217] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 39.417323] ? debug_check_no_locks_freed+0x310/0x310 [ 39.422503] ? kasan_check_write+0x14/0x20 [ 39.426749] ? __init_rwsem+0x1c4/0x290 [ 39.430714] ? graph_lock+0x170/0x170 [ 39.434506] ? find_held_lock+0x36/0x1c0 [ 39.438561] ? find_held_lock+0x36/0x1c0 [ 39.442616] ? __lock_is_held+0xb5/0x140 [ 39.446680] ? check_same_owner+0x320/0x320 [ 39.450991] ? graph_lock+0x170/0x170 [ 39.454790] ? rcu_note_context_switch+0x710/0x710 [ 39.459714] __should_failslab+0x124/0x180 [ 39.463944] should_failslab+0x9/0x14 [ 39.467735] kmem_cache_alloc+0x2af/0x760 [ 39.471871] ? find_held_lock+0x36/0x1c0 [ 39.475927] fuse_alloc_inode+0x96/0x4f0 [ 39.479978] ? fuse_dev_alloc+0x4e0/0x4e0 [ 39.484117] ? lock_downgrade+0x8e0/0x8e0 [ 39.488262] ? kasan_check_read+0x11/0x20 [ 39.492402] ? do_raw_spin_unlock+0x9e/0x2e0 [ 39.496802] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 39.501379] ? kasan_check_write+0x14/0x20 [ 39.505607] ? find_inode.isra.19+0xc3/0x1d0 [ 39.510006] ? fuse_dev_alloc+0x4e0/0x4e0 [ 39.514146] alloc_inode+0x63/0x190 [ 39.517765] iget5_locked+0x20e/0x570 [ 39.521559] ? fuse_inode_eq+0x80/0x80 [ 39.525440] ? fuse_init_file_inode+0x70/0x70 [ 39.529929] ? inode_lru_isolate+0x580/0x580 [ 39.534327] ? cgwb_kill+0x630/0x630 [ 39.538037] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 39.543565] ? print_usage_bug+0xc0/0xc0 [ 39.547617] fuse_iget+0x1cc/0x820 [ 39.551155] ? fuse_change_attributes+0x810/0x810 [ 39.555992] ? _raw_spin_unlock+0x22/0x30 [ 39.560135] fuse_get_root_inode+0x121/0x190 [ 39.564536] ? fuse_iget+0x820/0x820 [ 39.568252] ? _raw_spin_unlock_bh+0x30/0x40 [ 39.572650] ? bdi_set_max_ratio+0x112/0x150 [ 39.577051] fuse_fill_super+0x11e0/0x1e20 [ 39.581285] ? fuse_get_root_inode+0x190/0x190 [ 39.585866] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 39.590880] ? kasan_check_read+0x11/0x20 [ 39.595025] ? cap_capable+0x1f9/0x260 [ 39.598914] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 39.604444] ? security_capable+0x99/0xc0 [ 39.608589] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 39.614121] ? ns_capable_common+0x13f/0x170 [ 39.618525] ? get_anon_bdev+0x2f0/0x2f0 [ 39.622580] ? sget+0x113/0x150 [ 39.625852] ? fuse_get_root_inode+0x190/0x190 [ 39.630427] mount_nodev+0x6b/0x110 [ 39.634049] fuse_mount+0x2c/0x40 [ 39.637497] mount_fs+0xae/0x328 [ 39.640862] vfs_kern_mount.part.34+0xd4/0x4d0 [ 39.645612] ? may_umount+0xb0/0xb0 [ 39.649232] ? _raw_read_unlock+0x22/0x30 [ 39.653371] ? __get_fs_type+0x97/0xc0 [ 39.657256] do_mount+0x564/0x3070 [ 39.660798] ? do_raw_spin_unlock+0x9e/0x2e0 [ 39.665204] ? copy_mount_string+0x40/0x40 [ 39.669438] ? rcu_pm_notify+0xc0/0xc0 [ 39.673325] ? copy_mount_options+0x5f/0x380 [ 39.677727] ? rcu_read_lock_sched_held+0x108/0x120 [ 39.682739] ? kmem_cache_alloc_trace+0x616/0x780 [ 39.687582] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 39.693115] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 39.698646] ? copy_mount_options+0x285/0x380 [ 39.703138] ksys_mount+0x12d/0x140 [ 39.706758] __x64_sys_mount+0xbe/0x150 [ 39.710726] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 39.715742] do_syscall_64+0x1b1/0x800 [ 39.719710] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 39.724546] ? syscall_return_slowpath+0x5c0/0x5c0 [ 39.729470] ? syscall_return_slowpath+0x30f/0x5c0 [ 39.734395] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 39.739839] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 39.744679] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 39.749858] RIP: 0033:0x442689 [ 39.753037] RSP: 002b:00007fff62b2dc48 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 39.760738] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000442689 [ 39.768000] RDX: 00000000004a451e RSI: 0000000020000180 RDI: 00000000004ba505 [ 39.775262] RBP: 00007fff62b2e500 R08: 00007fff62b2e500 R09: 0000000000000000 [ 39.782520] R10: 0000000000000000 R11: 0000000000000206 R12: ffffffffffffffff [ 39.789778] R13: 0000000000000003 R14: 0000000000001380 R15: 00007fff62b2dd98 [ 39.797057] CPU: 0 PID: 4533 Comm: syz-executor216 Not tainted 4.17.0-rc3+ #35 [ 39.804421] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 39.810446] FAULT_INJECTION: forcing a failure. [ 39.810446] name failslab, interval 1, probability 0, space 0, times 0 [ 39.813769] Call Trace: [ 39.813790] dump_stack+0x1b9/0x294 [ 39.813808] ? dump_stack_print_info.cold.2+0x52/0x52 [ 39.813829] ? lockdep_init_map+0x9/0x10 [ 39.840367] should_fail.cold.4+0xa/0x1a [ 39.844418] ? do_raw_write_unlock.cold.8+0x3d/0x3d [ 39.849427] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 39.854527] ? graph_lock+0x170/0x170 [ 39.858317] ? find_held_lock+0x36/0x1c0 [ 39.862372] ? find_held_lock+0x36/0x1c0 [ 39.866426] ? __lock_is_held+0xb5/0x140 [ 39.870487] ? check_same_owner+0x320/0x320 [ 39.874799] ? make_kgid+0x23/0x30 [ 39.878331] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 39.884120] ? rcu_note_context_switch+0x710/0x710 [ 39.889046] __should_failslab+0x124/0x180 [ 39.893274] should_failslab+0x9/0x14 [ 39.897066] kmem_cache_alloc+0x2af/0x760 [ 39.901203] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 39.905777] ? kasan_check_write+0x14/0x20 [ 39.910002] ? do_raw_spin_lock+0xc1/0x200 [ 39.915137] __d_alloc+0xc0/0xd30 [ 39.918584] ? fuse_iget+0x1dd/0x820 [ 39.922292] ? shrink_dcache_for_umount+0x290/0x290 [ 39.927304] ? fuse_change_attributes+0x810/0x810 [ 39.932139] ? _raw_spin_unlock+0x22/0x30 [ 39.936284] ? fuse_get_root_inode+0x121/0x190 [ 39.940860] ? fuse_iget+0x820/0x820 [ 39.944573] d_make_root+0x42/0x90 [ 39.948107] fuse_fill_super+0x120e/0x1e20 [ 39.952338] ? fuse_get_root_inode+0x190/0x190 [ 39.956917] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 39.961927] ? kasan_check_read+0x11/0x20 [ 39.966071] ? cap_capable+0x1f9/0x260 [ 39.969956] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 39.975483] ? security_capable+0x99/0xc0 [ 39.979628] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 39.985156] ? ns_capable_common+0x13f/0x170 [ 39.989560] ? get_anon_bdev+0x2f0/0x2f0 [ 39.993612] ? sget+0x113/0x150 [ 39.996882] ? fuse_get_root_inode+0x190/0x190 [ 40.001463] mount_nodev+0x6b/0x110 [ 40.005089] fuse_mount+0x2c/0x40 [ 40.008533] mount_fs+0xae/0x328 [ 40.011898] vfs_kern_mount.part.34+0xd4/0x4d0 [ 40.016473] ? may_umount+0xb0/0xb0 [ 40.020090] ? _raw_read_unlock+0x22/0x30 [ 40.024226] ? __get_fs_type+0x97/0xc0 [ 40.028108] do_mount+0x564/0x3070 [ 40.031643] ? do_raw_spin_unlock+0x9e/0x2e0 [ 40.036044] ? copy_mount_string+0x40/0x40 [ 40.040268] ? rcu_pm_notify+0xc0/0xc0 [ 40.044153] ? copy_mount_options+0x5f/0x380 [ 40.048550] ? rcu_read_lock_sched_held+0x108/0x120 [ 40.053559] ? kmem_cache_alloc_trace+0x616/0x780 [ 40.058397] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 40.063933] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 40.069460] ? copy_mount_options+0x285/0x380 [ 40.073952] ksys_mount+0x12d/0x140 [ 40.077573] __x64_sys_mount+0xbe/0x150 [ 40.081659] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 40.086674] do_syscall_64+0x1b1/0x800 [ 40.090565] ? syscall_return_slowpath+0x5c0/0x5c0 [ 40.095486] ? syscall_return_slowpath+0x30f/0x5c0 [ 40.100411] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 40.105772] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 40.110608] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 40.115789] RIP: 0033:0x442689 [ 40.118965] RSP: 002b:00007fff62b2dc48 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 40.126667] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000442689 [ 40.133930] RDX: 00000000004a451e RSI: 0000000020000180 RDI: 00000000004ba505 [ 40.141197] RBP: 00007fff62b2e500 R08: 00007fff62b2e500 R09: 0000000000000000 [ 40.148459] R10: 0000000000000000 R11: 0000000000000206 R12: ffffffffffffffff [ 40.155716] R13: 0000000000000003 R14: 0000000000001380 R15: 00007fff62b2dd98 [ 40.162997] CPU: 1 PID: 4531 Comm: syz-executor216 Not tainted 4.17.0-rc3+ #35 [ 40.170365] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 40.179711] Call Trace: [ 40.182305] dump_stack+0x1b9/0x294 [ 40.185942] ? dump_stack_print_info.cold.2+0x52/0x52 [ 40.191132] ? unwind_get_return_address+0x61/0xa0 [ 40.196064] ? __save_stack_trace+0x7e/0xd0 [ 40.200388] should_fail.cold.4+0xa/0x1a [ 40.204451] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 40.209554] ? save_stack+0xa9/0xd0 [ 40.213183] ? save_stack+0x43/0xd0 [ 40.216808] ? kasan_kmalloc+0xc4/0xe0 [ 40.220713] ? kasan_slab_alloc+0x12/0x20 [ 40.224858] ? graph_lock+0x170/0x170 [ 40.228677] ? mount_nodev+0x6b/0x110 [ 40.232472] ? fuse_mount+0x2c/0x40 [ 40.236095] ? mount_fs+0xae/0x328 [ 40.239631] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 40.244386] ? do_mount+0x564/0x3070 [ 40.248096] ? ksys_mount+0x12d/0x140 [ 40.251902] ? find_held_lock+0x36/0x1c0 [ 40.255968] ? __lock_is_held+0xb5/0x140 [ 40.260041] ? check_same_owner+0x320/0x320 [ 40.264367] ? rcu_note_context_switch+0x710/0x710 [ 40.269301] __should_failslab+0x124/0x180 [ 40.273536] should_failslab+0x9/0x14 [ 40.277334] kmem_cache_alloc_trace+0x2cb/0x780 [ 40.282003] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 40.287015] ? __lockdep_init_map+0x105/0x590 [ 40.291514] fuse_dentry_init+0x45/0xa0 [ 40.295484] ? fuse_create+0x30/0x30 [ 40.299201] __d_alloc+0x6f8/0xd30 [ 40.302743] ? shrink_dcache_for_umount+0x290/0x290 [ 40.307758] ? fuse_change_attributes+0x810/0x810 [ 40.312602] ? _raw_spin_unlock+0x22/0x30 [ 40.316758] ? fuse_get_root_inode+0x121/0x190 [ 40.321338] ? fuse_iget+0x820/0x820 [ 40.325063] d_make_root+0x42/0x90 [ 40.328603] fuse_fill_super+0x120e/0x1e20 [ 40.332847] ? fuse_get_root_inode+0x190/0x190 [ 40.337434] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 40.342452] ? kasan_check_read+0x11/0x20 [ 40.346699] ? cap_capable+0x1f9/0x260 [ 40.350765] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 40.356303] ? security_capable+0x99/0xc0 [ 40.360453] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 40.366162] ? ns_capable_common+0x13f/0x170 [ 40.370574] ? get_anon_bdev+0x2f0/0x2f0 [ 40.374635] ? sget+0x113/0x150 [ 40.377914] ? fuse_get_root_inode+0x190/0x190 [ 40.382494] mount_nodev+0x6b/0x110 [ 40.386122] fuse_mount+0x2c/0x40 [ 40.389574] mount_fs+0xae/0x328 [ 40.392947] vfs_kern_mount.part.34+0xd4/0x4d0 [ 40.397529] ? may_umount+0xb0/0xb0 [ 40.401152] ? _raw_read_unlock+0x22/0x30 [ 40.405301] ? __get_fs_type+0x97/0xc0 [ 40.409196] do_mount+0x564/0x3070 [ 40.412739] ? copy_mount_string+0x40/0x40 [ 40.416972] ? rcu_pm_notify+0xc0/0xc0 [ 40.420866] ? copy_mount_options+0x5f/0x380 [ 40.425274] ? rcu_read_lock_sched_held+0x108/0x120 [ 40.430291] ? kmem_cache_alloc_trace+0x616/0x780 [ 40.435140] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 40.440682] ? _copy_from_user+0xdf/0x150 [ 40.444832] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 40.450369] ? copy_mount_options+0x285/0x380 [ 40.454864] ksys_mount+0x12d/0x140 [ 40.458494] __x64_sys_mount+0xbe/0x150 [ 40.463249] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 40.468266] do_syscall_64+0x1b1/0x800 [ 40.472154] ? syscall_return_slowpath+0x5c0/0x5c0 [ 40.477088] ? syscall_return_slowpath+0x30f/0x5c0 [ 40.482031] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 40.487404] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 40.492250] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 40.497431] RIP: 0033:0x442689 [ 40.500614] RSP: 002b:00007fff62b2dc48 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 40.508319] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000442689 [ 40.515582] RDX: 00000000004a451e RSI: 0000000020000180 RDI: 00000000004ba505 [ 40.522847] RBP: 00007fff62b2e500 R08: 00007fff62b2e500 R09: 0000000000000000 [ 40.530311] R10: 0000000000000000 R11: 0000000000000206 R12: ffffffffffffffff [ 40.537578] R13: 0000000000000003 R14: 0000000000001380 R15: 00007fff62b2dd98 [ 40.547642] FAULT_INJECTION: forcing a failure. [ 40.547642] name failslab, interval 1, probability 0, space 0, times 0 [ 40.550176] FAULT_INJECTION: forcing a failure. [ 40.550176] name failslab, interval 1, probability 0, space 0, times 0 [ 40.559013] CPU: 0 PID: 4529 Comm: syz-executor216 Not tainted 4.17.0-rc3+ #35 [ 40.577437] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 40.586778] Call Trace: [ 40.589365] dump_stack+0x1b9/0x294 [ 40.592996] ? dump_stack_print_info.cold.2+0x52/0x52 [ 40.598183] ? lockdep_init_map+0x9/0x10 [ 40.602242] should_fail.cold.4+0xa/0x1a [ 40.606299] ? do_raw_write_unlock.cold.8+0x3d/0x3d [ 40.611313] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 40.616415] ? graph_lock+0x170/0x170 [ 40.620209] ? find_held_lock+0x36/0x1c0 [ 40.624268] ? find_held_lock+0x36/0x1c0 [ 40.628328] ? __lock_is_held+0xb5/0x140 [ 40.632399] ? check_same_owner+0x320/0x320 [ 40.636717] ? make_kgid+0x23/0x30 [ 40.640251] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 40.645785] ? rcu_note_context_switch+0x710/0x710 [ 40.650710] __should_failslab+0x124/0x180 [ 40.654941] should_failslab+0x9/0x14 [ 40.658735] kmem_cache_alloc+0x2af/0x760 [ 40.662877] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 40.667455] ? kasan_check_write+0x14/0x20 [ 40.671682] ? do_raw_spin_lock+0xc1/0x200 [ 40.675915] __d_alloc+0xc0/0xd30 [ 40.679362] ? fuse_iget+0x1dd/0x820 [ 40.683075] ? shrink_dcache_for_umount+0x290/0x290 [ 40.688085] ? fuse_change_attributes+0x810/0x810 [ 40.692922] ? _raw_spin_unlock+0x22/0x30 [ 40.697066] ? fuse_get_root_inode+0x121/0x190 [ 40.701647] ? fuse_iget+0x820/0x820 [ 40.705363] d_make_root+0x42/0x90 [ 40.708898] fuse_fill_super+0x120e/0x1e20 [ 40.713133] ? fuse_get_root_inode+0x190/0x190 [ 40.717717] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 40.722730] ? kasan_check_read+0x11/0x20 [ 40.726877] ? cap_capable+0x1f9/0x260 [ 40.730767] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 40.736299] ? security_capable+0x99/0xc0 [ 40.740443] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 40.745987] ? ns_capable_common+0x13f/0x170 [ 40.750422] ? get_anon_bdev+0x2f0/0x2f0 [ 40.754487] ? sget+0x113/0x150 [ 40.757760] ? fuse_get_root_inode+0x190/0x190 [ 40.762335] mount_nodev+0x6b/0x110 [ 40.765960] fuse_mount+0x2c/0x40 [ 40.769407] mount_fs+0xae/0x328 [ 40.772769] vfs_kern_mount.part.34+0xd4/0x4d0 [ 40.777345] ? may_umount+0xb0/0xb0 [ 40.780968] ? _raw_read_unlock+0x22/0x30 [ 40.785112] ? __get_fs_type+0x97/0xc0 [ 40.788997] do_mount+0x564/0x3070 [ 40.792535] ? copy_mount_string+0x40/0x40 [ 40.796761] ? rcu_pm_notify+0xc0/0xc0 [ 40.800652] ? copy_mount_options+0x5f/0x380 [ 40.805051] ? rcu_read_lock_sched_held+0x108/0x120 [ 40.810061] ? kmem_cache_alloc_trace+0x616/0x780 [ 40.814906] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 40.820435] ? _copy_from_user+0xdf/0x150 [ 40.824580] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 40.830109] ? copy_mount_options+0x285/0x380 [ 40.834602] ksys_mount+0x12d/0x140 [ 40.838226] __x64_sys_mount+0xbe/0x150 [ 40.842194] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 40.847225] do_syscall_64+0x1b1/0x800 [ 40.851111] ? syscall_return_slowpath+0x5c0/0x5c0 [ 40.856039] ? syscall_return_slowpath+0x30f/0x5c0 [ 40.860967] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 40.866338] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 40.871180] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 40.876360] RIP: 0033:0x442689 [ 40.879543] RSP: 002b:00007fff62b2dc48 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 40.887245] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000442689 [ 40.894514] RDX: 00000000004a451e RSI: 0000000020000180 RDI: 00000000004ba505 [ 40.901773] RBP: 00007fff62b2e500 R08: 00007fff62b2e500 R09: 0000000000000000 [ 40.909034] R10: 0000000000000000 R11: 0000000000000206 R12: ffffffffffffffff [ 40.916295] R13: 0000000000000003 R14: 0000000000001380 R15: 00007fff62b2dd98 [ 40.923574] CPU: 1 PID: 4530 Comm: syz-executor216 Not tainted 4.17.0-rc3+ #35 [ 40.925093] ================================================================== [ 40.930939] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 40.938281] BUG: KASAN: use-after-free in __lock_acquire+0x3888/0x5140 [ 40.938295] Read of size 8 at addr ffff8801d8bc2bc8 by task syz-executor216/4528 [ 40.947625] Call Trace: [ 40.954276] [ 40.965971] dump_stack+0x1b9/0x294 [ 40.969593] ? dump_stack_print_info.cold.2+0x52/0x52 [ 40.974776] ? graph_lock+0x170/0x170 [ 40.978582] should_fail.cold.4+0xa/0x1a [ 40.982637] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 40.987734] ? graph_lock+0x170/0x170 [ 40.991521] ? lock_downgrade+0x8e0/0x8e0 [ 40.995664] ? find_held_lock+0x36/0x1c0 [ 40.999726] ? __lock_is_held+0xb5/0x140 [ 41.003787] ? check_same_owner+0x320/0x320 [ 41.008100] ? rcu_note_context_switch+0x710/0x710 [ 41.013026] __should_failslab+0x124/0x180 [ 41.017252] should_failslab+0x9/0x14 [ 41.021041] kmem_cache_alloc+0x2af/0x760 [ 41.025177] ? kasan_check_write+0x14/0x20 [ 41.029404] ? do_raw_spin_lock+0xc1/0x200 [ 41.033632] __fuse_request_alloc+0x27/0xf0 [ 41.037946] fuse_request_alloc+0x18/0x20 [ 41.042081] fuse_fill_super+0x124e/0x1e20 [ 41.046308] ? fuse_get_root_inode+0x190/0x190 [ 41.050881] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 41.055887] ? kasan_check_read+0x11/0x20 [ 41.060027] ? cap_capable+0x1f9/0x260 [ 41.063909] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 41.069437] ? security_capable+0x99/0xc0 [ 41.073576] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 41.079104] ? ns_capable_common+0x13f/0x170 [ 41.083511] ? get_anon_bdev+0x2f0/0x2f0 [ 41.087560] ? sget+0x113/0x150 [ 41.090832] ? fuse_get_root_inode+0x190/0x190 [ 41.095400] mount_nodev+0x6b/0x110 [ 41.099016] fuse_mount+0x2c/0x40 [ 41.102458] mount_fs+0xae/0x328 [ 41.105820] vfs_kern_mount.part.34+0xd4/0x4d0 [ 41.110388] ? may_umount+0xb0/0xb0 [ 41.114002] ? _raw_read_unlock+0x22/0x30 [ 41.118138] ? __get_fs_type+0x97/0xc0 [ 41.122021] do_mount+0x564/0x3070 [ 41.125554] ? copy_mount_string+0x40/0x40 [ 41.129777] ? rcu_pm_notify+0xc0/0xc0 [ 41.133657] ? copy_mount_options+0x5f/0x380 [ 41.138054] ? rcu_read_lock_sched_held+0x108/0x120 [ 41.143067] ? kmem_cache_alloc_trace+0x616/0x780 [ 41.147902] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 41.153433] ? _copy_from_user+0xdf/0x150 [ 41.157576] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 41.163106] ? copy_mount_options+0x285/0x380 [ 41.167595] ksys_mount+0x12d/0x140 [ 41.171212] __x64_sys_mount+0xbe/0x150 [ 41.175174] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 41.180181] do_syscall_64+0x1b1/0x800 [ 41.184063] ? syscall_return_slowpath+0x5c0/0x5c0 [ 41.188979] ? syscall_return_slowpath+0x30f/0x5c0 [ 41.193900] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 41.199256] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 41.204089] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 41.209269] RIP: 0033:0x442689 [ 41.212442] RSP: 002b:00007fff62b2dc48 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 41.220139] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000442689 [ 41.227398] RDX: 00000000004a451e RSI: 0000000020000180 RDI: 00000000004ba505 [ 41.234654] RBP: 00007fff62b2e500 R08: 00007fff62b2e500 R09: 0000000000000000 [ 41.241912] R10: 0000000000000000 R11: 0000000000000206 R12: ffffffffffffffff [ 41.249170] R13: 0000000000000003 R14: 0000000000001380 R15: 00007fff62b2dd98 [ 41.256450] CPU: 0 PID: 4528 Comm: syz-executor216 Not tainted 4.17.0-rc3+ #35 [ 41.263811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 41.273160] Call Trace: [ 41.275758] dump_stack+0x1b9/0x294 [ 41.279386] ? dump_stack_print_info.cold.2+0x52/0x52 [ 41.284575] ? printk+0x9e/0xba [ 41.287855] ? kmsg_dump_rewind_nolock+0xe4/0xe4 [ 41.292613] ? kasan_check_write+0x14/0x20 [ 41.296842] print_address_description+0x6c/0x20b [ 41.301681] ? __lock_acquire+0x3888/0x5140 [ 41.305995] kasan_report.cold.7+0x242/0x2fe [ 41.310399] __asan_report_load8_noabort+0x14/0x20 [ 41.315321] __lock_acquire+0x3888/0x5140 [ 41.319461] ? lock_downgrade+0x8e0/0x8e0 [ 41.323612] ? kasan_check_read+0x11/0x20 [ 41.327754] ? rcu_is_watching+0x85/0x140 [ 41.331897] ? debug_check_no_locks_freed+0x310/0x310 [ 41.334337] FAULT_INJECTION: forcing a failure. [ 41.334337] name failslab, interval 1, probability 0, space 0, times 0 [ 41.337083] ? is_bpf_text_address+0xd7/0x170 [ 41.337096] ? kernel_text_address+0x79/0xf0 [ 41.337110] ? __unwind_start+0x166/0x330 [ 41.337122] ? __kernel_text_address+0xd/0x40 [ 41.337136] ? unwind_get_return_address+0x61/0xa0 [ 41.337147] ? __save_stack_trace+0x7e/0xd0 [ 41.337168] ? save_stack+0xa9/0xd0 [ 41.378612] ? save_stack+0x43/0xd0 [ 41.382231] ? __kasan_slab_free+0x11a/0x170 [ 41.386629] ? kasan_slab_free+0xe/0x10 [ 41.390595] ? kfree+0xd9/0x260 [ 41.393864] ? unregister_shrinker+0x216/0x3a0 [ 41.398437] ? deactivate_locked_super+0x70/0x100 [ 41.403267] ? mount_nodev+0xfa/0x110 [ 41.407058] ? fuse_mount+0x2c/0x40 [ 41.410691] ? mount_fs+0xae/0x328 [ 41.414221] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 41.418962] ? do_mount+0x564/0x3070 [ 41.422660] ? ksys_mount+0x12d/0x140 [ 41.426447] ? graph_lock+0x170/0x170 [ 41.430234] ? kasan_check_read+0x11/0x20 [ 41.434369] ? do_raw_spin_unlock+0x9e/0x2e0 [ 41.438764] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 41.443334] ? print_usage_bug+0xc0/0xc0 [ 41.447388] ? kasan_check_write+0x14/0x20 [ 41.451620] ? do_raw_spin_lock+0xc1/0x200 [ 41.455845] lock_acquire+0x1dc/0x520 [ 41.459636] ? fuse_kill_sb_anon+0x50/0xb0 [ 41.463862] ? lock_release+0xa10/0xa10 [ 41.467829] ? check_same_owner+0x320/0x320 [ 41.472137] ? quarantine_put+0xeb/0x190 [ 41.476369] ? rcu_note_context_switch+0x710/0x710 [ 41.481293] ? __might_sleep+0x95/0x190 [ 41.485256] down_write+0x87/0x120 [ 41.488784] ? fuse_kill_sb_anon+0x50/0xb0 [ 41.493003] ? down_read+0x1b0/0x1b0 [ 41.496709] ? perf_trace_mm_vmscan_writepage+0x750/0x750 [ 41.502232] fuse_kill_sb_anon+0x50/0xb0 [ 41.506279] deactivate_locked_super+0x97/0x100 [ 41.510933] ? fuse_get_root_inode+0x190/0x190 [ 41.515504] mount_nodev+0xfa/0x110 [ 41.519117] fuse_mount+0x2c/0x40 [ 41.522566] mount_fs+0xae/0x328 [ 41.525928] vfs_kern_mount.part.34+0xd4/0x4d0 [ 41.530495] ? may_umount+0xb0/0xb0 [ 41.534106] ? _raw_read_unlock+0x22/0x30 [ 41.538241] ? __get_fs_type+0x97/0xc0 [ 41.542128] do_mount+0x564/0x3070 [ 41.545656] ? do_raw_spin_unlock+0x9e/0x2e0 [ 41.550051] ? copy_mount_string+0x40/0x40 [ 41.554270] ? rcu_pm_notify+0xc0/0xc0 [ 41.558145] ? copy_mount_options+0x5f/0x380 [ 41.562540] ? rcu_read_lock_sched_held+0x108/0x120 [ 41.567548] ? kmem_cache_alloc_trace+0x616/0x780 [ 41.572385] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 41.577915] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 41.583442] ? copy_mount_options+0x285/0x380 [ 41.587924] ksys_mount+0x12d/0x140 [ 41.591537] __x64_sys_mount+0xbe/0x150 [ 41.595501] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 41.600504] do_syscall_64+0x1b1/0x800 [ 41.604380] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 41.609209] ? syscall_return_slowpath+0x5c0/0x5c0 [ 41.614127] ? syscall_return_slowpath+0x30f/0x5c0 [ 41.619045] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 41.624398] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 41.629231] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 41.634405] RIP: 0033:0x442689 [ 41.637583] RSP: 002b:00007fff62b2dc48 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 41.645276] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000442689 [ 41.652534] RDX: 00000000004a451e RSI: 0000000020000180 RDI: 00000000004ba505 [ 41.659793] RBP: 00007fff62b2e500 R08: 00007fff62b2e500 R09: 0000000000000000 [ 41.667051] R10: 0000000000000000 R11: 0000000000000206 R12: ffffffffffffffff [ 41.674306] R13: 0000000000000003 R14: 0000000000001380 R15: 00007fff62b2dd98 [ 41.681580] [ 41.681592] CPU: 1 PID: 4532 Comm: syz-executor216 Not tainted 4.17.0-rc3+ #35 [ 41.681602] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 41.683205] Allocated by task 4528: [ 41.690554] Call Trace: [ 41.700337] save_stack+0x43/0xd0 [ 41.703939] dump_stack+0x1b9/0x294 [ 41.706488] kasan_kmalloc+0xc4/0xe0 [ 41.706503] kmem_cache_alloc_trace+0x152/0x780 [ 41.709933] ? dump_stack_print_info.cold.2+0x52/0x52 [ 41.713527] fuse_fill_super+0xc92/0x1e20 [ 41.713541] mount_nodev+0x6b/0x110 [ 41.717231] ? trace_hardirqs_on+0xd/0x10 [ 41.721867] fuse_mount+0x2c/0x40 [ 41.721881] mount_fs+0xae/0x328 [ 41.727050] should_fail.cold.4+0xa/0x1a [ 41.731163] vfs_kern_mount.part.34+0xd4/0x4d0 [ 41.731177] do_mount+0x564/0x3070 [ 41.734781] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 41.738894] ksys_mount+0x12d/0x140 [ 41.738907] __x64_sys_mount+0xbe/0x150 [ 41.742336] ? graph_lock+0x170/0x170 [ 41.745673] do_syscall_64+0x1b1/0x800 [ 41.745688] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 41.749725] ? graph_lock+0x170/0x170 [ 41.754273] [ 41.754282] Freed by task 4525: [ 41.757804] ? lock_downgrade+0x8e0/0x8e0 [ 41.762880] save_stack+0x43/0xd0 [ 41.766482] ? find_held_lock+0x36/0x1c0 [ 41.770423] __kasan_slab_free+0x11a/0x170 [ 41.770438] kasan_slab_free+0xe/0x10 [ 41.774229] ? check_same_owner+0x320/0x320 [ 41.778072] kfree+0xd9/0x260 [ 41.778088] rcu_process_callbacks+0xa69/0x15f0 [ 41.783253] ? do_raw_spin_unlock+0x9e/0x2e0 [ 41.787019] __do_softirq+0x2e0/0xaf5 [ 41.787025] [ 41.788640] ? rcu_note_context_switch+0x710/0x710 [ 41.791885] The buggy address belongs to the object at ffff8801d8bc2900 [ 41.791885] which belongs to the cache kmalloc-1024 of size 1024 [ 41.791899] The buggy address is located 712 bytes inside of [ 41.791899] 1024-byte region [ffff8801d8bc2900, ffff8801d8bc2d00) [ 41.796024] __should_failslab+0x124/0x180 [ 41.799437] The buggy address belongs to the page: [ 41.799451] page:ffffea000762f080 count:1 mapcount:0 mapping:ffff8801d8bc2000 index:0x0 [ 41.803493] should_failslab+0x9/0x14 [ 41.807686] compound_mapcount: 0 [ 41.811476] __kmalloc_track_caller+0x2c4/0x760 [ 41.815762] flags: 0x2fffc0000008100(slab|head) [ 41.815779] raw: 02fffc0000008100 ffff8801d8bc2000 0000000000000000 0000000100000007 [ 41.818858] ? may_umount+0xb0/0xb0 [ 41.823498] raw: ffffea000762d0a0 ffffea000741b120 ffff8801da800ac0 0000000000000000 [ 41.827883] ? do_mount+0x25e7/0x3070 [ 41.831642] page dumped because: kasan: bad access detected [ 41.831648] [ 41.833262] kstrdup+0x39/0x70 [ 41.838147] Memory state around the buggy address: [ 41.838161] ffff8801d8bc2a80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 41.850969] do_mount+0x25e7/0x3070 [ 41.862908] ffff8801d8bc2b00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 41.867123] ? copy_mount_string+0x40/0x40 [ 41.872017] >ffff8801d8bc2b80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 41.880136] ? rcu_pm_notify+0xc0/0xc0 [ 41.883896] ^ [ 41.883906] ffff8801d8bc2c00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 41.887343] ? copy_mount_options+0x5f/0x380 [ 41.891975] ffff8801d8bc2c80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 41.896623] ? rcu_read_lock_sched_held+0x108/0x120 [ 41.904464] ================================================================== [ 41.904471] Disabling lock debugging due to kernel taint [ 41.908079] ? kmem_cache_alloc_trace+0x616/0x780 [ 41.916826] Kernel panic - not syncing: panic_on_warn set ... [ 41.916826] [ 41.920619] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 42.029764] ? _copy_from_user+0xdf/0x150 [ 42.033902] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 42.039427] ? copy_mount_options+0x285/0x380 [ 42.043918] ksys_mount+0x12d/0x140 [ 42.047530] __x64_sys_mount+0xbe/0x150 [ 42.051492] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 42.056494] do_syscall_64+0x1b1/0x800 [ 42.060365] ? syscall_return_slowpath+0x5c0/0x5c0 [ 42.065280] ? syscall_return_slowpath+0x30f/0x5c0 [ 42.070199] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 42.075550] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 42.080377] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 42.085547] RIP: 0033:0x442689 [ 42.088720] RSP: 002b:00007fff62b2dc48 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 42.096414] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000442689 [ 42.103666] RDX: 00000000004a451e RSI: 0000000020000180 RDI: 00000000004ba505 [ 42.110921] RBP: 00007fff62b2e500 R08: 00007fff62b2e500 R09: 0000000000000000 [ 42.118173] R10: 0000000000000000 R11: 0000000000000206 R12: ffffffffffffffff [ 42.125426] R13: 0000000000000003 R14: 0000000000001380 R15: 00007fff62b2dd98 [ 42.132694] CPU: 0 PID: 4528 Comm: syz-executor216 Tainted: G B 4.17.0-rc3+ #35 [ 42.135212] FAULT_INJECTION: forcing a failure. [ 42.135212] name failslab, interval 1, probability 0, space 0, times 0 [ 42.141432] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 42.141436] Call Trace: [ 42.141455] dump_stack+0x1b9/0x294 [ 42.141468] ? dump_stack_print_info.cold.2+0x52/0x52 [ 42.141488] ? lock_downgrade+0x8e0/0x8e0 [ 42.177521] ? vprintk_default+0x28/0x30 [ 42.181574] ? __lock_acquire+0x3790/0x5140 [ 42.185885] panic+0x22f/0x4de [ 42.189064] ? add_taint.cold.5+0x16/0x16 [ 42.193197] ? add_taint.cold.5+0x5/0x16 [ 42.197241] ? do_raw_spin_unlock+0x9e/0x2e0 [ 42.201634] ? __lock_acquire+0x3888/0x5140 [ 42.205939] kasan_end_report+0x47/0x4f [ 42.209899] kasan_report.cold.7+0x76/0x2fe [ 42.214206] __asan_report_load8_noabort+0x14/0x20 [ 42.219120] __lock_acquire+0x3888/0x5140 [ 42.223250] ? lock_downgrade+0x8e0/0x8e0 [ 42.227383] ? kasan_check_read+0x11/0x20 [ 42.231517] ? rcu_is_watching+0x85/0x140 [ 42.235653] ? debug_check_no_locks_freed+0x310/0x310 [ 42.240833] ? is_bpf_text_address+0xd7/0x170 [ 42.245313] ? kernel_text_address+0x79/0xf0 [ 42.249727] ? __unwind_start+0x166/0x330 [ 42.253857] ? __kernel_text_address+0xd/0x40 [ 42.258337] ? unwind_get_return_address+0x61/0xa0 [ 42.263250] ? __save_stack_trace+0x7e/0xd0 [ 42.267560] ? save_stack+0xa9/0xd0 [ 42.271174] ? save_stack+0x43/0xd0 [ 42.274784] ? __kasan_slab_free+0x11a/0x170 [ 42.279180] ? kasan_slab_free+0xe/0x10 [ 42.283146] ? kfree+0xd9/0x260 [ 42.286409] ? unregister_shrinker+0x216/0x3a0 [ 42.290977] ? deactivate_locked_super+0x70/0x100 [ 42.295805] ? mount_nodev+0xfa/0x110 [ 42.299593] ? fuse_mount+0x2c/0x40 [ 42.303212] ? mount_fs+0xae/0x328 [ 42.306734] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 42.311472] ? do_mount+0x564/0x3070 [ 42.315171] ? ksys_mount+0x12d/0x140 [ 42.318956] ? graph_lock+0x170/0x170 [ 42.322739] ? kasan_check_read+0x11/0x20 [ 42.326873] ? do_raw_spin_unlock+0x9e/0x2e0 [ 42.331269] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 42.335833] ? print_usage_bug+0xc0/0xc0 [ 42.339880] ? kasan_check_write+0x14/0x20 [ 42.344103] ? do_raw_spin_lock+0xc1/0x200 [ 42.348327] lock_acquire+0x1dc/0x520 [ 42.352115] ? fuse_kill_sb_anon+0x50/0xb0 [ 42.356340] ? lock_release+0xa10/0xa10 [ 42.360302] ? check_same_owner+0x320/0x320 [ 42.364605] ? quarantine_put+0xeb/0x190 [ 42.368650] ? rcu_note_context_switch+0x710/0x710 [ 42.373568] ? __might_sleep+0x95/0x190 [ 42.377529] down_write+0x87/0x120 [ 42.381059] ? fuse_kill_sb_anon+0x50/0xb0 [ 42.385279] ? down_read+0x1b0/0x1b0 [ 42.388977] ? perf_trace_mm_vmscan_writepage+0x750/0x750 [ 42.394505] fuse_kill_sb_anon+0x50/0xb0 [ 42.398555] deactivate_locked_super+0x97/0x100 [ 42.403209] ? fuse_get_root_inode+0x190/0x190 [ 42.407779] mount_nodev+0xfa/0x110 [ 42.411390] fuse_mount+0x2c/0x40 [ 42.414828] mount_fs+0xae/0x328 [ 42.418184] vfs_kern_mount.part.34+0xd4/0x4d0 [ 42.422748] ? may_umount+0xb0/0xb0 [ 42.426362] ? _raw_read_unlock+0x22/0x30 [ 42.430498] ? __get_fs_type+0x97/0xc0 [ 42.434372] do_mount+0x564/0x3070 [ 42.437897] ? do_raw_spin_unlock+0x9e/0x2e0 [ 42.442290] ? copy_mount_string+0x40/0x40 [ 42.446526] ? rcu_pm_notify+0xc0/0xc0 [ 42.450399] ? copy_mount_options+0x5f/0x380 [ 42.454800] ? rcu_read_lock_sched_held+0x108/0x120 [ 42.459805] ? kmem_cache_alloc_trace+0x616/0x780 [ 42.464634] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 42.470159] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 42.475679] ? copy_mount_options+0x285/0x380 [ 42.480160] ksys_mount+0x12d/0x140 [ 42.483774] __x64_sys_mount+0xbe/0x150 [ 42.487732] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 42.492734] do_syscall_64+0x1b1/0x800 [ 42.496615] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 42.501451] ? syscall_return_slowpath+0x5c0/0x5c0 [ 42.506364] ? syscall_return_slowpath+0x30f/0x5c0 [ 42.511281] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 42.516631] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 42.521463] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 42.526640] RIP: 0033:0x442689 [ 42.529810] RSP: 002b:00007fff62b2dc48 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 42.537507] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000442689 [ 42.544759] RDX: 00000000004a451e RSI: 0000000020000180 RDI: 00000000004ba505 [ 42.552015] RBP: 00007fff62b2e500 R08: 00007fff62b2e500 R09: 0000000000000000 [ 42.559281] R10: 0000000000000000 R11: 0000000000000206 R12: ffffffffffffffff [ 42.566534] R13: 0000000000000003 R14: 0000000000001380 R15: 00007fff62b2dd98 [ 42.574231] CPU: 1 PID: 4534 Comm: syz-executor216 Tainted: G B 4.17.0-rc3+ #35 [ 42.582972] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 42.592309] Call Trace: [ 42.594881] dump_stack+0x1b9/0x294 [ 42.598494] ? dump_stack_print_info.cold.2+0x52/0x52 [ 42.603667] ? lock_acquire+0x1dc/0x520 [ 42.607627] should_fail.cold.4+0xa/0x1a [ 42.611671] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 42.616759] ? check_same_owner+0x320/0x320 [ 42.621066] ? lock_acquire+0x1dc/0x520 [ 42.625025] ? __d_instantiate+0x51a/0x730 [ 42.629240] ? lock_downgrade+0x8e0/0x8e0 [ 42.633373] ? kasan_kmalloc+0xc4/0xe0 [ 42.637248] ? kasan_check_read+0x11/0x20 [ 42.641386] ? do_raw_spin_unlock+0x9e/0x2e0 [ 42.645781] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 42.650347] ? lock_acquire+0x1dc/0x520 [ 42.654393] ? fs_reclaim_acquire+0x20/0x20 [ 42.658698] ? lock_downgrade+0x8e0/0x8e0 [ 42.663006] ? check_same_owner+0x320/0x320 [ 42.667307] ? d_instantiate+0x79/0xa0 [ 42.671181] ? rcu_note_context_switch+0x710/0x710 [ 42.676115] __should_failslab+0x124/0x180 [ 42.680335] should_failslab+0x9/0x14 [ 42.684119] kmem_cache_alloc+0x2af/0x760 [ 42.688249] ? kasan_check_write+0x14/0x20 [ 42.692462] ? do_raw_spin_lock+0xc1/0x200 [ 42.696681] __fuse_request_alloc+0x27/0xf0 [ 42.700987] fuse_request_alloc+0x18/0x20 [ 42.705117] fuse_fill_super+0x124e/0x1e20 [ 42.709336] ? fuse_get_root_inode+0x190/0x190 [ 42.713903] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 42.718902] ? kasan_check_read+0x11/0x20 [ 42.723032] ? cap_capable+0x1f9/0x260 [ 42.726908] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 42.732427] ? security_capable+0x99/0xc0 [ 42.736564] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 42.742083] ? ns_capable_common+0x13f/0x170 [ 42.747258] ? get_anon_bdev+0x2f0/0x2f0 [ 42.751310] ? sget+0x113/0x150 [ 42.754576] ? fuse_get_root_inode+0x190/0x190 [ 42.759139] mount_nodev+0x6b/0x110 [ 42.762748] fuse_mount+0x2c/0x40 [ 42.766182] mount_fs+0xae/0x328 [ 42.769533] vfs_kern_mount.part.34+0xd4/0x4d0 [ 42.774097] ? may_umount+0xb0/0xb0 [ 42.777713] ? _raw_read_unlock+0x22/0x30 [ 42.781846] ? __get_fs_type+0x97/0xc0 [ 42.785715] do_mount+0x564/0x3070 [ 42.789238] ? copy_mount_string+0x40/0x40 [ 42.793454] ? rcu_pm_notify+0xc0/0xc0 [ 42.797329] ? copy_mount_options+0x5f/0x380 [ 42.801719] ? rcu_read_lock_sched_held+0x108/0x120 [ 42.806721] ? kmem_cache_alloc_trace+0x616/0x780 [ 42.811551] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 42.817070] ? _copy_from_user+0xdf/0x150 [ 42.821203] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 42.826725] ? copy_mount_options+0x285/0x380 [ 42.831213] ksys_mount+0x12d/0x140 [ 42.834822] __x64_sys_mount+0xbe/0x150 [ 42.838776] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 42.843774] do_syscall_64+0x1b1/0x800 [ 42.847657] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 42.852481] ? syscall_return_slowpath+0x5c0/0x5c0 [ 42.857392] ? syscall_return_slowpath+0x30f/0x5c0 [ 42.862306] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 42.867652] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 42.872480] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 42.877648] RIP: 0033:0x442689 [ 42.880817] RSP: 002b:00007fff62b2dc48 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 42.888508] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000442689 [ 42.895759] RDX: 00000000004a451e RSI: 0000000020000180 RDI: 00000000004ba505 [ 42.903009] RBP: 00007fff62b2e500 R08: 00007fff62b2e500 R09: 0000000000000000 [ 42.910259] R10: 0000000000000000 R11: 0000000000000206 R12: ffffffffffffffff [ 42.917509] R13: 0000000000000003 R14: 0000000000001380 R15: 00007fff62b2dd98 [ 42.925236] Dumping ftrace buffer: [ 42.928761] (ftrace buffer empty) [ 42.932447] Kernel Offset: disabled [ 42.936057] Rebooting in 86400 seconds..